search cancel

Unable to discover AD accounts using the discovery option

book

Article ID: 253691

calendar_today

Updated On:

Products

CA Privileged Access Manager (PAM)

Issue/Introduction

When a PAM Admin attempts to run a Credential Discovery against their LDAP Domain, no Target Accounts are returned and they get the following error:

Error:  Could not find GroupDN

Environment

Release : 3.4.x, 4.0.x, 4.1.x

Resolution

Inside the LDAP/Active Directory Application Type, in the Active Directory Tab the setting "Groups", was defined with the full distinguished name:

All you have to do is put the short name there:

Attachments