Not able to attach the newly created AD Account with Global User in Provisioning
search cancel

Not able to attach the newly created AD Account with Global User in Provisioning

book

Article ID: 403517

calendar_today

Updated On:

Products

CA Identity Suite CA Identity Manager

Issue/Introduction

Not able to attach the newly created AD Account with Global User in Provisioning.

During User creation home directory should be crearted but for some reason it was giving error:

JNDI: [LDAP: error code 70 - Failed to create home directory rc: 67 - The network name cannot be found.]: failed to add eTADSAccountName=<User ID of user>,eTADSOrgUnitName=<group 1>,eTADSOrgUnitName=<group 2>,eTADSDirectoryName=<AD endpoint name>,eTNamespaceName=ActiveDirectory,dc=im,dc=etasa (ldaps://<IP of Provisiong Server>:20411)


COMPLETED   JOB 0: SendAddJob [eTADSAccountName=<User ID of user>, rc=80(ConnectorServer Add failed: code 80 (OTHER-LdapNamingException): failed to add entry eTADSAccountName=<User ID of user>,eTADSOrgUnitName=<group 1>,eTADSOrgUnitName=<group 2>,eTADSDirectoryName=<AD endpoint name>,dc=im,dc=etasa: JCS@<hostname of JCS>: JNDI: [LDAP: error code 70 - Failed to create home directory rc: 67 - The network name cannot be found.

 

 

Environment

Identity Manager 14.5 SP1 CHF1 

Resolution

Issue was resolved by using PolicyXpress to create home directory instead of using Account Template to do it.

Which in turn allowed correct creation of account on the endpoint and linking it with global User on Provisioning Server side.

Additional Information

We would suggest checking why account used to connect to AD endpoint can't create new home directory on the remote server.

Powered by Wolken Software