LDAP. Sync does not find LDAP group.
Article ID: 190079
Updated On:
Products
CA Automic Workload Automation - Automation Engine
Issue/Introduction
WARN LDAP group 'Group_Name' could not be found. Please check spelling and schema settings, or check user permissions of the user used to search LDAP. If the group was deleted from LDAP, remove the mapping.
Environment
Release : 2.3.0
Component : LDAPSYNC
Cause
Configuration
Resolution
The defaults.xml has the group name defined twice in userDN and groupDN.
<Configuration>
<Schema baseDN="OU=Group_Name,DC=PROD,DC=Domain_Name,DC=com"
userDN="OU=Users,OU=Group_Name"
groupDN="OU=Groups,OU=Group_Name"
updateDn="false"/>
Therefor the search request is looking for an LDAP group that does not exist.
SearchRequest
baseDn : 'OU=Groups,OU=Group_Name,OU=Group_Name,DC=PROD,DC=Domain_Name,DC=com'
Resolution:
Remove the Group_Name from userDN and groupDN.
<Configuration>
<Schema baseDN="OU=Group_Name,DC=PROD,DC=Domain_Name,DC=com"
userDN="OU=Users,OU=Group_Name"
groupDN="OU=Groups,OU=Group_Name"
updateDn="false"/>
Therefor the search request is looking for an LDAP group that does not exist.
SearchRequest
baseDn : 'OU=Groups,OU=Group_Name,OU=Group_Name,DC=PROD,DC=Domain_Name,DC=com'
Resolution:
Remove the Group_Name from userDN and groupDN.
Feedback
Yes
No
Powered by
