"mismatched suffix" error occurs when changing the password
Article ID: 204074
Updated On:
Products
Issue/Introduction
When updating my password, I get a "mismatched suffix" error in the log.
What is the reason for this error and how can I fix it?
For example, if I change the password for the user “test001”, I see the following error in the application server and provisioning server logs
Snippet from Server.log:
ERROR [com.netegrity.ims.events.ResetPasswordEvent] (Thread-19752 (HornetQ-client-global-threads-407012620)) execute(): Error in executing event due to endpoint offline: [facility=6 severity=3 reason=0 status=0 message=Wrapped Exception: javax.naming.NamingException: [LDAP: error code 1 - Domain 'im' has mismatched suffix 'dc=im' and component 'dc=test']; remaining name 'eTGlobalUserName=test001,eTGlobalUserContainerName=Global Users,eTNamespaceName=CommonObjects,dc=test,dc=eta']
javax.naming.NamingException: [LDAP: error code 1 - Domain 'im' has mismatched suffix 'dc=im' and component 'dc=test']; remaining name 'eTGlobalUserName=test001,eTGlobalUserContainerName=Global Users,eTNamespaceName=CommonObjects,dc=test,dc=eta'
Snippet from etatrans.log:
Search :E506:----:F: FAILURE: External Search (eTGlobalUserName=test001)
Search :E506:----:F: rc: 0x0001 (Operations error)
Search :E506:----:F: msg: Domain 'im' has mismatched suffix 'dc=im' and component 'dc=test'
Also, if I select the Provisioning Roles tab in Modify or View User, I get an error.
Environment
Release : 14.x
Component : IDENTITY MGMT & GOVRNCE DOCUMENTATION
Cause
Incorrect domain name "dc=test" exist in Directory Information Tree (DIT).
Resolution
Connect to the provisioning directory with an LDAP browser (such as JXplorer) and check for the presence of incorrect domain names.
If there is an incorrect domain name, delete it.
In this case, delete "dc=test" value.
Feedback
