Error creating account in Active Directory endpoint
Article ID: 46562
Updated On:
Products
CA Identity Manager
CA Identity Governance
CA Identity Portal
CA Risk Analytics
CA Secure Cloud SaaS - Arcot A-OK (WebFort)
CLOUDMINDER ADVANCED AUTHENTICATION
CA Secure Cloud SaaS - Advanced Authentication
CA Secure Cloud SaaS - Identity Management
CA Secure Cloud SaaS - Single Sign On
Issue/Introduction
Problem:
Creating a user on an Active Directory endpoint fails with the following message in the logs:
[LDAP: error code 1 - 00002077: SvcErr: DSID-033807BB, problem 5012 (DIR_ERROR), data 8237
Cause:
This error indicates that updates to the unicodePwd attribute are being rejected because the connection is not secure. When the requirement for special formatting of unicodePwd was lifted Microsoft placed a default requirement to ensure all password operations are done through LDAPS instead of LDAP. This is why it will not import the password and Identity Manager throws this error.
Resolution/Workaround:
Setup SSL communication with your Active Directory endpoint.
Environment
Release: CAIDMB99000-12.6.8-Identity Manager-B to B
Component:
Component:
Feedback
Yes
No
Powered by
