XADM: "0XC0072038 (8248): The Result Set Is Too Large" Error Message When You Run Setup with /domainprep Switch

If you run Exchange 2000 Server Setup with the /domainprep switch, Setup does not complete and the following error is reported in the Exchange Server Setup Progress log:

This issue occurs if the third-party software Checkpoint Next Generation firewall is installed. Two objects are returned for a query, although Setup expects only one object.

During installation, Setup queries Active Directory to enumerate the object classes in the schema. One of the queries that Setup issues has the following Lightweight Directory Access Protocol (LDAP) filter: When this query is run, two objects are returned, although Setup is only expecting one object. When a similar query that uses LDP is run, two objects are returned: The additional schema class, fw1person, is added when the third-party software Checkpoint Next Generation firewall is installed in the forest. This software adds a new object class to the schema; this object class has an AdminDisplayName of "user". This causes the query to return two objects, and Setup stops.

WARNING: If you use the ADSI Edit snap-in, the LDP utility, or any other LDAP version 3 client, and you incorrectly modify the attributes of Active Directory objects, you can cause serious problems. These problems may require you to reinstall Microsoft Windows 2000 Server, Microsoft Exchange 2000 Server, or both. Microsoft cannot guarantee that problems that occur if you incorrectly modify Active Directory object attributes can be solved. Modify these attributes at your own risk. To resolve this issue, allow the schema to be modified, and then change the AdminDisplayName of the fw1person object in the Active Directory Schema. To change the AdminDisplayName of the fw1person object, use the ADSI Edit snap-in. The ADSI Edit snap-in is included with the Windows 2000 Support Tools. To do this, follow these steps:

1. Allow the schema to be modified. For additional information about how to allow modification of the schema, click the following article number to view the article in the Microsoft Knowledge Base:
   261231� XADM: Unable to Update the Schema on the Schema Owner
2. Install the Windows 2000 Support Tools if they are not already installed. For additional information about how to install the Support Tools, click the article number below to view the article in the Microsoft Knowledge Base:
   301423� How to Install the Windows 2000 Support Tools
3. Click Start, click Run, type adsiedit.msc, and then click OK.
   
   ADSI Edit starts.
4. Expand the schema, and then expand the entry that begins with "CN=Schema".
5. In the right pane, find the entry that begins with "CN=fw1person".
6. Right-click the "CN=fw1person" entry, and then click Properties.
7. Under Select which properties to view, click Optional.
8. Under Select a property to view, click adminDisplayName.
9. In the Edit Attribute box, change the text to fw1person.
10. Click Set, and then click OK.

After the AdminDisplayName is changed, Setup with the /domainprep switch can complete successfully.

The third-party products that are discussed in this article are manufactured by companies that are independent of Microsoft. Microsoft makes no warranty, implied or otherwise, regarding the performance or reliability of these products.