The LDAPS_SEARCH
CALL routine selects and retrieves entries from a specified LDAP directory.
A search handle is returned so that information about specific entries
and attributes can be obtained. The search information that is identified
by the search handle can be used until it is explicitly freed using
the LDAPS_FREE CALL routine or until the connection is closed using
the LDAPS_CLOSE CALL routine.
Note: For Microsoft Active Directory servers, the maximum
number of attributes that can be returned is limited. You can use
a technique called range retrieval to work around this issue. For
more information, see
http://msdn.microsoft.com/en-us/library/aa367017.aspx
in the Microsoft Developer Network library. The LDAPS_SEARCH CALL
routine should not be used to retrieve internal attributes from a
Microsoft Active Directory server.