Error creating account in Active Directory endpoint
Article ID: 46562
Updated On:
Products
CA Identity Manager
CA Identity Suite
CA Identity Portal
CA Identity Governance
Issue/Introduction
Creating a user on an Active Directory endpoint fails with the following message in the logs:
[LDAP: error code 1 - 00002077: SvcErr: DSID-033807BB, problem 5012 (DIR_ERROR), data 8237
Environment
All Identity Manager
Cause
This error indicates that updates to the unicodePwd attribute are being rejected because the connection is not secure. When the requirement for special formatting of unicodePwd was lifted Microsoft placed a default requirement to ensure all password operations are done through LDAPS instead of LDAP. This is why it will not import the password and Identity Manager throws this error.
Resolution
Setup secure communication for you your Active Directory endpoint with either SSL or SASL (recommended) per product documentation:
Feedback
Yes
No
Powered by
