Error while trying to access Top secret account using TTS v2 Connector Server Read failed: code 34 on tssacidgrp=mfaFactors
search cancel

Error while trying to access Top secret account using TTS v2 Connector Server Read failed: code 34 on tssacidgrp=mfaFactors

book

Article ID: 275969

calendar_today

Updated On:

Products

CA Identity Suite CA Identity Manager

Issue/Introduction

Error while trying to access Top secret account using TTS v2.

error:

ETA_E_0020<RAC>, User Account '<useraccount>' on '<endpoint hostname>' read failed: Connector Server Read failed: code 34 (INVALID_DN_SYNTAX): failed on search operation: eTDYNAccountName=<useraccount>,eTDYNAccountContainerName=ACIDs,eTDYNDirectoryName=<endpoint hostname>,eTNamespaceName=CA Top Secret v2,dc=im,dc=etasa: JCS@<JCS name>: JNDI: tssacidgrp=mfaFactors,tssacid=<useraccount>,tssadmingrp=acids,host=<im hostname>,o=<organization>,c=<company>: [LDAP: error code 34 - Invalid DN Syntax]: failed to lookup tssacid=<useraccount>,tssadmingrp=acids,host=<im hostname>,o=<organization>,c=<company> (ldaps://<JCS_hostname>:20411) 

 

Environment

14.4, 14.5

Cause

Error was caused by lack of permission on user used to access endpoint:

https://techdocs.broadcom.com/us/en/ca-mainframe-software/security/ca-advanced-authentication-mainframe/2-0/using-with-ca-top-secret/list-the-acid-security-record-ca-top-secret.html

Resolution

After providing permissions to DATA(MFA) error no longer appears.