cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

IDM 7.2 failed to read AD users

Go to solution
Former Member

on ‎08-08-2016 1:13 PM

0 Kudos

Dear Experts,

we have IDM 7.2 and source system defined is AD server. If any new user get created in AD, it should get automatically get created in IDM as well.

There is custom job defined to run midnight but even after that AD user is not reflecting in IDM. I have forcefully run job again but job is aborted with below error.

Failed getting member from CN=KC-Users,OU=Groups

java.lang.Throwable: [LDAP: error code 12 - 00002040: SvcErr: DSID-031401E7, problem 5010 (UNAVAIL_EXTENSION), data 0]

I have also attached read job details in screenshot..

pls help..

Show replies
Show replies
Answer

Accepted Solutions (1)

Accepted Solutions (1)

former_member2987
Active Contributor
‎08-08-2016 3:42 PM
0 Kudos

Hi Imran,

Please post the Job log.  This is not an LDAP error I am familiar with. Also what port are you connecting to AD on?

Thanks,

Matt

Show replies
Show replies

Answers (2)

Answers (2)

Former Member
‎08-09-2016 7:22 AM
0 Kudos

Thanks Matt,

1. Job log screenshot attached

2. I checked LDAP port in repository, it is 389.

@Dominik,

We do have users less than 500 AD users in total..

Show replies
Show replies
former_member2987
Active Contributor
‎08-09-2016 1:42 PM
0 Kudos

Ok, so LDAP 12 is a bad extension, I was wondering if you were trying something on Port 636 (LDAPS)

You might have less than 500 users, but  it could be an LDAP filter issue. Which would allude to what Dominik was saying.

What is it you want the job to do? What is the starting point?

Matt

Former Member
‎08-09-2016 1:59 PM
0 Kudos

The LDAP users are reflected today even after Job is aborted. Hence Closing this thread..

Thank you Matt and Dominik for your reply.

former_member201064
Active Participant
‎08-08-2016 7:36 PM
0 Kudos

The unavail extension occurs when a group with more members than 1500 is read out of the AD.

KC users as group name, sounds like some kind of "all users" group anyone has.

Show replies
Show replies
Ask a Question