• When attempting to migrate or update a large volume of security objects (Groups, Policies, and Rules) via the Global Manager API (/global-manager/api/v1/global-infra), the request is rejected. Automation scripts fail to commit changes, and the system returns an error indicating the transaction has exceeded the permitted number of objects.
• The following error is encountered in the API response:

  cause: request payload size exceeds the permitted limit, max 1,001 objects are allowed per request

• This occurs when a JSON payload contains a hierarchical tree where the total count of "children" objects across the Infra or Domain levels exceeds 1,000.

This issue is caused by a hard-coded architectural limit within the NSX Policy Engine designed to ensure Management Plane stability and prevent memory exhaustion or federation sync timeouts.

This is a condition that may occur in a VMware NSX environment.

Related issues:

[VMC on AWS] Unable to list more than 1000 objects using NSX VMC Policy API