search cancel

An Active Directory error 0x52 occurred when trying to check the suitability of server

book

Article ID: 225393

calendar_today

Updated On:

Products

CA Identity Manager

Issue/Introduction

The following error observed in the log

20210907:114733:TID=bf8b70:CreateAcct:C034:C032:F: Reason: An Active Directory error 0x52 occurred when trying to check the suitabil
20210907:114733:TID=bf8b70:CreateAcct:C034:C032:F:+ity of server 'mina.int'. Error: 'Active directory response: A local error occurred

Exchange 2016

Cause

Exchange configuration / Encryption settings

Environment

Release : 14.x

Component : Identity Manager

Resolution

In the etatrans.log, the following error is observed (for an account creation which does not involve any AD groups:)

 FAILURE: Connector Server Add (eTADSAccountName=Prueba IDM Correo6 91771)
     rc:  0x0050 (Unknown error)
     msg: Connector Server Add failed: code 80 (OTHER-LdapNamingException): failed
+ to add entry eTADSAccountName=Prueba IDM Correo6 91771,eTADSOrgUnitName=EMPRESAS
+-EXTERNAS,eTADSOrgUnitName=Cajamar,eTADSDirectoryName=Cajamar_AD_Prod_Exchange,eT
+NamespaceName=ActiveDirectory,dc=im,dc=etasa: [email protected]: JNDI: [LDAP: err
+or code 70 - Added object: CN=Prueba IDM Correo6 91771,OU=EMPRESAS-EXTERNAS,OU=Ca
+jamar,DC=cajamar,DC=int
 An Active Directory error 0x52 occurred when trying to check the suitability of s
+erver 'escullosha.cajamar.int'. Error: 'Active directory response: A local error 
+occurred.']: failed to add eTADSAccountName=Prueba IDM Correo6 91771,eTADSOrgUnit
+Name=EMPRESAS-EXTERNAS,eTADSOrgUnitName=Cajamar,eTADSDirectoryName=Cajamar_AD_Pro
+d_Exchange,eTNamespaceName=ActiveDirectory,dc=im,dc=etasa (ldaps://idm-con-p-01w.
+cajamar.int:20411)

While I am unable to find a similar reported error in our knowledge base, not this has been observed by our engineering team, the following public thread has been found on Microsoft website

https://social.technet.microsoft.com/Forums/office/en-US/7023c6e4-74cc-457b-b964-8e1befa754af/exchange-2016-cu11-install-error-an-active-directory-error-0x52-occurred-when-trying-to-check-the?forum=Exch2016SD

In there, it is mentioned how to address it, by adjusting the network security and configure the encryption types allowed for Kerberos - need to check the box for RC4_HMAC_MD5.