LDAP: error code 32 - when rotating Password for Target Account
search cancel

LDAP: error code 32 - when rotating Password for Target Account

book

Article ID: 406765

calendar_today

Updated On:

Products

CA Privileged Access Manager (PAM)

Issue/Introduction

When attempting to rotate a password in the PAM UI, user is presented the following error:

PAM-CM-3438: Error updating password in Active Directory. Service credentials for this account (if any) were not updated.   

Cause

Inside the Tomcat logs, the following error presented itself:

javax.naming.NameNotFoundException: [LDAP: error code 32 - 0000208D: NameErr: DSID-0310028C, problem 2001 (NO_OBJECT), data 0, best match of:
 'DC=EXAMPLE,DC=COM'

which means the account has an Incorrect Distinguished Name (DN) on the Active Directory Tab.

Resolution

Corrected the invalid Distinguished Name (DN) value on the Active Directory Tab for this Active Directory Target Account

Powered by Wolken Software