The uidNumber and gidNumber are converted to strings as unsigned integers before being passed to LDAP. This does not match with the definitions in rfc2307 http://www.ietf.org/rfc/rfc2307.txt?number=2307 where they are signed values. When a search is done using uidNumber or gidNumber and the value exceeds the maximum positive integer value NDS returns a syntax error. I've attached a patch which forces these values to signed integers in the ldap query so that LDAP servers which do strict checking won't fail an large values.
Created attachment 1014 [details] patch: update uidNumber/gidNumber ldap queries.
patch looks good to me. I'll do some local testing and then check it into 3.0. Thanks.
applied. Thanks.
sorry for the same, cleaning up the database to prevent unecessary reopens of bugs.