We are trying to add an LDAP user to PAM by adding it to an LDAP group an importing it to the appliance.
However, when refreshing the LDAP group, the following error messages are obtained
PAM-LDAP-0018: Error adding user <DN of user being imported>
PAM-CMN-0020: Error occurred while trying to complete request. (76)
And the user is not imported
This may be caused by an error in one of the LDAP user attributes to be inserted into the CA PAM database tables. For instance, if the phone number to be inserted is longer than the 30 characters reserved for it, or if there is any other type of anomaly in the data passed from LDAP
CA PRIVILEGED ACCESS MANAGEMENT all versions up to 3.3.1
Review the attributes of the LDAP user being imported. Reduce length of some of the longer attributes (e.g. phone number, name...) or eliminate other possible causes of errors like special characters, etc. If you can't find a solution by checking the attributes, open an issue to Broadcom Support.