Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss

Adamsync Builtin Error

613 views
Skip to first unread message

Spoon

unread,
Sep 14, 2009, 10:21:24 PM9/14/09
to

Hi,

I am very new to AD LDS and have followed all of the MS articles, as
well as read some books and also read a lot online.

I can setup my LDS instance with no problems and sync the schema using
the schema analyser.
When I try and sync AD with LDS I get a naming violation error for
Builtin (See attached Synclog.txt). I have also attached my config file
(MS-AdamSyncConfFFXNZ.xml). If I specifically only sync objects from any
other CN (such as users) it works fine.

I have tried the following to solve this:

- Recreated LDS instance and only sync'd the schema with the AD using
the schema analyser, didn't run the 2008 schema update LDF.

- Named LDS instance the same as the domain name.

- As suggested in other forums I updated the posssuperiors setting.

Does anyone have any suggestions on how to resolve this?


+-------------------------------------------------------------------+
|Filename: MS-AdamSyncConfFFXNZ.xml.txt |
|Download: http://forums.techarena.in/attachment.php?attachmentid=10048|
+-------------------------------------------------------------------+

--
Spoon
------------------------------------------------------------------------
Spoon's Profile: http://forums.techarena.in/members/135370.htm
View this thread: http://forums.techarena.in/active-directory/1246760.htm

http://forums.techarena.in

Lee Flight

unread,
Sep 15, 2009, 3:55:31 AM9/15/09
to
Hi

the error

>Ldap error occured. ldap_add_sW: Naming Violation.
>Extended Info: 00002099: NameErr: DSID-0305104A, problem 2005
>(NAMING_VIOLATION), data 0, best match >of:
> 'cn=partition1,dc=ffxnzlds,dc=co,dc=nz'

is a containment issue. By default the schema you will have imported from
your AD
will have *only* the objectClass domainDNS as a possible superior
(containing) class
for builtinDomain objects (of which cn=Builtin is an example)
however your choice of cn=partition1,.... means that the root (head) of your
ADAM
naming context that you are sync'ing to is a Container object and so the
attempt to create
a builtinDomain object with a Container as a superior fails.

To fix this up copy the following into a file say update.ldf:

dn: cn=Builtin-Domain,cn=Schema,cn=Configuration,dc=X
changetype: modify
add: possSuperiors
possSuperiors: container
-

dn:
changetype: modify
add: schemaUpdateNow
schemaUpdateNow: 1
-

and load it on your ADAM server with

ldifde -i -f update.ldf -s localhost:<ADAMport> -c
"cn=Schema,cn=Configuration,dc=X" #schemaNamingContext

that should all be one line (ignore wraps) and ADAMport is the port number
for your ADAM instance. Watch out for trailing whitespace at the end of
lines when copying the lines for the ldf above.

Lee Flight

"Spoon" <Spoon....@DoNotSpam.com> wrote in message
news:Spoon....@DoNotSpam.com...

Spoon

unread,
Sep 15, 2009, 6:22:59 PM9/15/09
to

Thanks John, that fixed that issue but now I get

Processing Entry: Page 1, Frame 1, Entry 75, Count 1, USN 0
Processing source entry <guid=d1a5a5c0de2f6a4aba4aa3f04d2ffc3f>
Processing in-scope entry d1a5a5c0de2f6a4aba4aa3f04d2ffc3f.
Adding target object OU=Domain
Controllers,cn=partition1,dc=ffxnzlds,dc=co,dc=nz.
Adding attributes: sourceobjectguid, objectClass, description,
instanceType, showInAdvancedViewOnly, gPLink, gPOptions,
lastagedchange,


Ldap error occured. ldap_add_sW: Naming Violation.
Extended Info: 00002099: NameErr: DSID-0305104A, problem 2005
(NAMING_VIOLATION), data 0, best match of:
'cn=partition1,dc=ffxnzlds,dc=co,dc=nz'

Lee Flight

unread,
Sep 16, 2009, 3:33:52 AM9/16/09
to
Hi

that's another 00002099 error [1] so the same issue, this time it's
OU that needs to have Container as a possible superior, you
can fix this by using a modified version of the ldf file I posted
changing

dn: cn=Builtin-Domain,cn=Schema,cn=Configuration,dc=X

to

dn: cn=CN=Organizational-Unit,cn=Schema,cn=Configuration,dc=X

Alternatively you could start from scratch and rebuild your ADAM instance
with:

dc=partition1,dc=ffxnzlds,dc=co,dc=nz

as your application naming context rather than

cn=partition1,dc=ffxnzlds,dc=co,dc=nz

and then the containment rules from the AD source schema would just
work for the sync to ADAM.

Lee Flight

[1] ERROR_DS_ILLEGAL_SUPERIOR
winerror.h
# The object cannot be added because the parent is not on the
# list of possible superiors.

"Spoon" <Spoon....@DoNotSpam.com> wrote in message
news:Spoon....@DoNotSpam.com...
>

Spoon

unread,
Sep 16, 2009, 9:41:17 PM9/16/09
to

Thanks so much Lee, I wish I had known that to begin with!! However I
did learn a lot about LDS while trying to troubleshoot my issues.

Is there any functional difference between using DC=Partition1 instead
of CN=Partition1 ??

Lee Flight

unread,
Sep 17, 2009, 9:39:40 AM9/17/09
to
Hi

on the differences you would really need to look at the original X.500 and
follow-on LDAP schema and see what the intention was when defining
the classes. Perhaps more of a bottom line observation is that AD partition
heads are always domainDNS for reason tied into the NOS functions
that are AD's reason for being so if sync to an ADAM partition that
is not domainDNS you may hit the containment issues that you did and so
if you are flexible in what you can choose for your ADAM partition
making it DNS helps for an easier ADAMsync. However some folks
have application compatibility or other reasons for choosing an ADAM
partition that is not domainDNS and so ADAMsync would need schema
adjustment for them.

Lee Flight


"Spoon" <Spoon....@DoNotSpam.com> wrote in message
news:Spoon....@DoNotSpam.com...
>

Spoon

unread,
Sep 23, 2009, 2:57:15 AM9/23/09
to

Hi Lee,

Thanks for your help so far. I now have my LDS instance syncing with my
AD perfectly.

The next part I am having trouble with is setting up a proxy in LDS to
use simple binding as I have an application that requires simple
binding.

I have followed this technet article
(http://technet.microsoft.com/en-us/library/cc794922(WS.10).aspx) and
have created the proxy correctly however when I try and do a simple bind
in LDP.exe I get the error:

-----------
res = ldap_simple_bind_s(ld, 'CAEProxy.partition1.ffxnzlds.co.nz',
<unavailable>); // v.3
Error <49>: ldap_simple_bind_s() failed: Invalid Credentials
Server error: 8009030C: LdapErr: DSID-0C0903AA, comment:
AcceptSecurityContext error, data 2030, v1772
Error 0x8009030C The logon attempt failed
-----------

Below is the info on the proxy I have created

-----------
Expanding base 'CN=CAEProxy,DC=partition1,DC=ffxnzlds,DC=co,DC=nz'...
Getting 1 entries:
Dn: CN=CAEProxy,DC=partition1,DC=ffxnzlds,DC=co,DC=nz
cn: CAEProxy;
distinguishedName: CN=CAEProxy,DC=partition1,DC=ffxnzlds,DC=co,DC=nz;
dSCorePropagationData: 0x0 = ( );
instanceType: 0x4 = ( WRITE );
name: CAEProxy;
objectCategory:
CN=User-Proxy,CN=Schema,CN=Configuration,CN={D476B2E2-8E25-47F9-BF61-123DB8AC0B6B};

objectClass (2): top; userProxy;
objectGUID: 498adffa-a0fd-45e1-890f-0b83f10beaa1;
objectSid: S-1-5-21-3942888816-2215201101-3900552350-500;
showInAdvancedViewOnly: TRUE;
uSNChanged: 21672;
uSNCreated: 21672;
whenChanged: 23/09/2009 6:46:47 p.m. New Zealand Standard Time;
whenCreated: 23/09/2009 6:46:47 p.m. New Zealand Standard Time;

-----------

Lee Flight

unread,
Sep 23, 2009, 11:07:02 AM9/23/09
to
Hi

looking at your bind attempt

> res = ldap_simple_bind_s(ld, 'CAEProxy.partition1.ffxnzlds.co.nz',
> <unavailable>); // v.3

'CAEProxy.partition1.ffxnzlds.co.nz'

looks wrong it should be

CN=CAEProxy,DC=partition1,DC=ffxnzlds,DC=co,DC=nz

which is the distinguishedName (dn) of the userProxy object that
you should enter in the bind attempt.

Lee Flight

"Spoon" <Spoon....@DoNotSpam.com> wrote in message
news:Spoon....@DoNotSpam.com...
>

Joe Kaplan

unread,
Sep 23, 2009, 5:22:42 PM9/23/09
to
Also, if you want to have "friendly names" for your bind proxy objects, you
can set those in either displayName or userPrincipalName in ADAM. If you
want them to match user names in AD (and you probably do), you might
consider syncing those.

--
Joe Kaplan-MS MVP Directory Services Programming
Co-author of "The .NET Developer's Guide to Directory Services Programming"
http://www.directoryprogramming.net
"Lee Flight" <l...@le.ac.uk-nospam> wrote in message
news:u%23kcu%23FPKH...@TK2MSFTNGP05.phx.gbl...

Spoon

unread,
Sep 23, 2009, 5:31:56 PM9/23/09
to

EDIT: I figured it out, the require secure bind was still turned on. My
app is now able to connect through the user proxy.

Thanks for all of your help thus far Lee.

Sorry, I should have mentioned that I have tried using the DN too

-----------
res = ldap_simple_bind_s(ld,
'CN=CAEProxy,DC=partition1,DC=ffxnzlds,DC=co,DC=nz', <unavailable>); //
v.3
Error <52>: ldap_simple_bind_s() failed: Unavailable


Server error: 8009030C: LdapErr: DSID-0C0903AA, comment:

AcceptSecurityContext error, data 202d, v1772


Error 0x8009030C The logon attempt failed
-----------

Lee Flight

unread,
Sep 24, 2009, 6:06:01 AM9/24/09
to
Hi

oh well that (202d) is a different error (ERROR_DS_CONFIDENTIALITY_REQUIRED)
which as you discovered is RequireSecureProxyBind requirement.

Lee Flight

"Spoon" <Spoon....@DoNotSpam.com> wrote in message
news:Spoon....@DoNotSpam.com...
>

Spoon

unread,
Sep 24, 2009, 8:43:53 PM9/24/09
to

So all is working well in my lab but I do have one more question...

I know that the whole point of LDS is so that you can make changes
required by apps to LDS and not effect or risk your AD environment. I
have found through doing the work in the lab that it is important that
the schema for AD and LDS are the same (schemaanalyzer) however when I
go into the live environment my schema in LDS will be different than the
AD schema as I will be applying a schema update to the LDS and not AD.
Is this going to cause me problems?

Lee Flight

unread,
Sep 25, 2009, 4:58:14 AM9/25/09
to

Hi

once you have your AD and AD LDS schema in sync then any valid schema
additions in AD LDS schema are not likely to be a problem - assuming that
the
updates to the AD LDS are not say defuncting existing attributes/classes or
removing
attributes from classes.

If you apply any
modifications to your AD schema and want to see that reflected in your ADAM
instance then clearly some modification on the ADAM side will be required.
ADschemaanalyzer could again help bring any further AD schema modifications
into ADAM if required.

Roughly speaking you should be fine.

Lee Flight

"Spoon" <Spoon....@DoNotSpam.com> wrote in message
news:Spoon....@DoNotSpam.com...
>

Spoon

unread,
Sep 26, 2009, 2:26:02 AM9/26/09
to

Ah yeah, that makes sense.

Thanks

Spoon

unread,
Oct 7, 2009, 1:13:45 AM10/7/09
to

Hi Lee,

Yet another questions about something I have run into ... :-)

So I have an application that will using my LDS instance and have the
instance syncing with AD fine.
I setup a proxy user using the SID of an account in my AD and the
application seems to be able to bind to LDS fine using the proxy user.

The whole point of using LDS however is so that the application can
work soley in the LDS instance, so why do I need a proxy user ?

When I create a normal user in LDS (That has admin rights within the
LDS instance) and try to bind I get the below error:

unable to establish ldap connection: couldn't bind ldap session:
Invalid credentials: 8009030C: LdapErr: DSID-0C0903AA, comment:
AcceptSecurityContext error, data 2030, v1772

The reason I am asking this is because in my lab environment everything
worked fine because the proxy user in LDS was using the SID from the AD
Administrator account but in my live environment I have setup the LDS
proxy user to use the SID of a normal domain account that doesn't have
admin rights. When I connect my app to LDS it can bind but not actually
see or use the LDS...

Joe Kaplan

unread,
Oct 7, 2009, 9:20:40 AM10/7/09
to
You might also want to consider adding "Authenticated Users" to the readers
role in ADAM. This will allow any user who can bind to the directory
generic read rights. Otherwise, you may wish to consider adding all the
users who need access directly to the readers role, but that's a much more
significant task to manage.

--
Joe Kaplan-MS MVP Directory Services Programming
Co-author of "The .NET Developer's Guide to Directory Services Programming"
http://www.directoryprogramming.net

"Spoon" <Spoon....@DoNotSpam.com> wrote in message
news:Spoon....@DoNotSpam.com...
>

Lee Flight

unread,
Oct 7, 2009, 1:21:32 PM10/7/09
to
Hi

things to check if binding as a native LDS user:

you need LDAP simple bind

your need to use the correct distinguishedName of the object
(you can actually use userPrincipalName if set but start with
distinguishedName)

check that the account is enabled msDS-UserAccountDisabled attribute on the
object is not set TRUE

By default you need to grant the application account access to objects in AD
LDS objects
adding it to the Readers role in AD LDS will do this, see Joe's post.

Lee Flight

"Spoon" <Spoon....@DoNotSpam.com> wrote in message
news:Spoon....@DoNotSpam.com...
>

Spoon

unread,
Oct 7, 2009, 5:17:45 PM10/7/09
to

hmmmm, still can't get it to work...

Tried to check the msds-userAccountDisabled setting but I can't find it
against my user accounts in LDS...

Can some explain the whole process from the beginning of creating the
user?

Joe Kaplan

unread,
Oct 7, 2009, 6:27:17 PM10/7/09
to
The error code 2030 is "no such user". So, something about what you are
providing in your bind is not identifying an LDS user. For this error
specifically:
- Make sure you are doing simple bind (you can easily do this in ldp.exe to
verify and show us the display output)
- Make sure the username you supply is a username for an LDS user.
Remember that UNLESS you have set displayName or userPrincipalName to a
specific value, only the distinguishedName of the user works. So, if you
want a shorter username, make sure you put it in one of those two attributes
(and make sure it is unique).

Regarding your other question, you create bind proxy objects when you want
to use the password information that is stored in AD but either your
application only supports simple bind.

HTH!

--
Joe Kaplan-MS MVP Directory Services Programming
Co-author of "The .NET Developer's Guide to Directory Services Programming"
http://www.directoryprogramming.net

"Spoon" <Spoon....@DoNotSpam.com> wrote in message
news:Spoon....@DoNotSpam.com...
>

Spoon

unread,
Oct 7, 2009, 9:04:12 PM10/7/09
to

I just don't understand why it isn't working as it is a pretty simple
thing to do. I have been using LDP.exe to do a simple bind with the DN
CN=cae,DC=Partition1,DC=FFXNZLDS,DC=CO,DC=NZ and get the following
output:

res = ldap_simple_bind_s(ld,
'CN=cae,DC=Partition1,DC=FFXNZLDS,DC=CO,DC=NZ', <unavailable>); // v.3


Error <52>: ldap_simple_bind_s() failed: Unavailable

Server error: 8009030C: LdapErr: DSID-0C0903AA, comment:


AcceptSecurityContext error, data 2030, v1772

Error 0x8009030C The logon attempt failed

I have tried also setting and using displayName or userPrincipalName
but got the same result.

All I am doing is creating a new user object in ADSI edit, setting the
password for it in ADSI edit and then trying to simple bind to it using
ldp.exe

Spoon

unread,
Oct 8, 2009, 12:07:09 AM10/8/09
to

Ok, got it working.

Found the below forum post:

http://www.servernewsgroups.net/group/microsoft.public.windows.server.active_directory/topic13084.aspx

Basically recreated the LDS instance and applied the standard user.ldif
file before syncing the Schema and doing an Adamsync.

I am just hoping we don't run into any more issues.

Joe Kaplan

unread,
Oct 8, 2009, 12:46:07 AM10/8/09
to
Did you somehow have an ADAM schema with a user class that did not
msds-bindableObject as an aux class? This will happen if you use the AD
schema. The only reason you would ever want to use this schema is to sync
data from AD for some type of read application. It is NOT a good schema to
use for implementing a user store.

However, I didn't know the schema actually allowed you to set a password but
have it not be bindable. The fact that you didn't see the
msds-userAccountDisabled attribute might have been a clue there.

--
Joe Kaplan-MS MVP Directory Services Programming
Co-author of "The .NET Developer's Guide to Directory Services Programming"
http://www.directoryprogramming.net
"Spoon" <Spoon....@DoNotSpam.com> wrote in message
news:Spoon....@DoNotSpam.com...
>

Spoon

unread,
Oct 11, 2009, 7:03:32 PM10/11/09
to

So my next question...

How do you include group membership in the sync using Adamsync?

When I do my adamsync from AD to my LDS instance group membership is
not sync'd.

Lee Flight

unread,
Oct 12, 2009, 8:35:12 AM10/12/09
to
Hi,
group membership will sync by default, perhaps you have a custom
object-filter that is dropping groups?
Can we see your ADAMsync XML configuration file?

Lee Flight

"Spoon" <Spoon....@DoNotSpam.com> wrote in message
news:Spoon....@DoNotSpam.com...
>

Spoon

unread,
Oct 13, 2009, 1:51:25 AM10/13/09
to

It was actually working, I was just be a bit hasty posting here :-p

Spoon

unread,
Oct 20, 2009, 12:16:09 AM10/20/09
to

So having a syncing problem and not sure why, log is below

________________________________________________________________
Adamsync.exe v1.0 (6)

Establishing connection to target server pdcldsvm001:389.

There is already an active sync session in progress.

Please allow the session to complete, or use -mai to seize the role.

Saving Configuration File on DC=Partition1,DC=FFXNZLDS,DC=CO,DC=NZ

Saved configuration file.

ADAMSync is querying for a writeable replica of ffx150.

Error: DCLocator call failed with error 1355. Attempting to bind
directly to string.

Establishing connection to source server ffx150:389.

Using file .\dam9C4C.tmp as a store for deferred dn-references.

Populating the schema cache

Populating the well known objects cache

Starting synchronization run from DC=ffxnz,DC=co,DC=nz.

Starting DirSync Search with object mode security.

Processing Entry: Page 1, Frame 1, Entry 0, Count 0, USN 0

Processing source entry <guid=77dbfd0767a85f41b245a628481fc1fc>

Previous entry took 0 seconds (0, 0) to process

Processing Entry: Page 1, Frame 1, Entry 1, Count 1, USN 0

Processing source entry <guid=68d8f7345331b14d888ac166662d4067>

Processing in-scope entry 68d8f7345331b14d888ac166662d4067.

Modifying target object
CN=DPTAD2001,OU=Advertising,OU=Wellington,OU=Computers,OU=DPT,DC=ffxnz,DC=co,DC=nz.

Modifying attributes: lastagedchange,

Previous entry took 0 seconds (0, 0) to process

Processing Entry: Page 1, Frame 1, Entry 2, Count 1, USN 0

Processing source entry <guid=a4b637bbbc3ef64ca6f003e031c29ace>

Processing in-scope entry a4b637bbbc3ef64ca6f003e031c29ace.

Modifying target object
CN=MEXED0054,OU=Computers,OU=MEX,DC=ffxnz,DC=co,DC=nz.

Modifying attributes: dBCSPwd, lastagedchange,

Previous entry took 0 seconds (0, 0) to process

Processing Entry: Page 1, Frame 1, Entry 3, Count 1, USN 0

Processing source entry <guid=cce0b9c23dbc4849a65a756e07bbbb13>

Processing in-scope entry cce0b9c23dbc4849a65a756e07bbbb13.

Cannot modify object which does not exist in target. Re-reading subtree
via LDAP.

Previous entry took 0 seconds (16, 0) to process

Processing Entry: Page 1, Frame 2, Entry 0, Count 0, USN 115516015

Processing source entry <guid=cce0b9c23dbc4849a65a756e07bbbb13>

Processing in-scope entry cce0b9c23dbc4849a65a756e07bbbb13.

Adding target object
DC=pdcsqlcl004,DC=ffxnz.co.nz,CN=MicrosoftDNS,CN=System,dc=partition1,dc=ffxnzlds,dc=co,dc=nz.

Will not synchronize attribute distinguishedname. Deleting attribute.

Will not synchronize attribute whenchanged. Deleting attribute.

Will not synchronize attribute usncreated. Deleting attribute.

Will not synchronize attribute usnchanged. Deleting attribute.

Adding attributes: objectClass, instanceType, showInAdvancedViewOnly,
sourceobjectguid, dnsRecord, dNSTombstoned, dc, lastagedchange,

Adding target object
DC=pdcsqlcl004,DC=ffxnz.co.nz,CN=MicrosoftDNS,CN=System,dc=partition1,dc=ffxnzlds,dc=co,dc=nz.
Requesting replication of parent.

Previous entry took 0 seconds (15, 0) to process

Processing Entry: Page 1, Frame 3, Entry 0, Count 0, USN 15084246

Processing source entry <guid=a4e9177728e6c043885a2213a7f559fc>

Processing in-scope entry a4e9177728e6c043885a2213a7f559fc.

Adding target object
DC=ffxnz.co.nz,CN=MicrosoftDNS,CN=System,dc=partition1,dc=ffxnzlds,dc=co,dc=nz.

Will not synchronize attribute distinguishedname. Deleting attribute.

Will not synchronize attribute whenchanged. Deleting attribute.

Will not synchronize attribute usncreated. Deleting attribute.

Will not synchronize attribute usnchanged. Deleting attribute.

Will not synchronize attribute dscorepropagationdata. Deleting
attribute.

Adding attributes: objectClass, instanceType, showInAdvancedViewOnly,
sourceobjectguid, dNSProperty, dc, lastagedchange,

Adding target object
DC=ffxnz.co.nz,CN=MicrosoftDNS,CN=System,dc=partition1,dc=ffxnzlds,dc=co,dc=nz.
Requesting replication of parent.

Previous entry took 0 seconds (16, 0) to process

Processing Entry: Page 1, Frame 4, Entry 0, Count 0, USN 0

Processing source entry <guid=7fcba10829bc024eb6dde90caced5a35>

Processing in-scope entry 7fcba10829bc024eb6dde90caced5a35.

Unable to read attribute instancetype on .

Unable to read attribute instancetype on .

Unable to replicate the current object. A required attribute
(instancetype) is missing.

This is most likely due to a permissioning issue. Skipping object.

Previous entry took 0 seconds (0, 0) to process

Processing Entry: Page 1, Frame 3, Entry 0, Count 0, USN 15084246

Processing out-of-scope entry
dc=ffxnz.co.nz,cn=microsoftdns,cn=system,dc=ffxnz,dc=co,dc=nz under
dynamic scope CN=MicrosoftDNS,CN=System,DC=ffxnz,DC=co,DC=nz.

Processing source entry <guid=a4e9177728e6c043885a2213a7f559fc>

Previous entry took 0 seconds (0, 0) to process

Processing Entry: Page 1, Frame 2, Entry 0, Count 0, USN 115516015

Processing out-of-scope entry
dc=pdcsqlcl004,dc=ffxnz.co.nz,cn=microsoftdns,cn=system,dc=ffxnz,dc=co,dc=nz
under dynamic scope CN=MicrosoftDNS,CN=System,DC=ffxnz,DC=co,DC=nz.

Processing source entry <guid=cce0b9c23dbc4849a65a756e07bbbb13>

Previous entry took 0 seconds (0, 0) to process

Processing Entry: Page 1, Frame 1, Entry 3, Count 2, USN 0

Processing out-of-scope entry
dc=pdcsqlcl004,dc=ffxnz.co.nz,cn=microsoftdns,cn=system,dc=ffxnz,dc=co,dc=nz
under dynamic scope CN=MicrosoftDNS,CN=System,DC=ffxnz,DC=co,DC=nz.

Processing source entry <guid=cce0b9c23dbc4849a65a756e07bbbb13>

Previous entry took 0 seconds (0, 0) to process

Processing Entry: Page 1, Frame 1, Entry 4, Count 1, USN 0

Processing source entry <guid=28fbc00694903c4488e132564ed5c533>

Skipping deletion of object which does not exist locally.

Previous entry took 0 seconds (0, 0) to process

Processing Entry: Page 1, Frame 1, Entry 5, Count 1, USN 0

Processing source entry <guid=0e004680adc974448312fba7f8cae905>

Skipping deletion of object which does not exist locally.

Previous entry took 0 seconds (0, 0) to process

Processing Entry: Page 1, Frame 1, Entry 6, Count 1, USN 0

Processing source entry <guid=35cd529ce44e1b499a4580bb2f859a9b>

Processing in-scope entry 35cd529ce44e1b499a4580bb2f859a9b.

Modifying target object
CN=DPTED0695,OU=Editorial,OU=Wellington,OU=Computers,OU=DPT,DC=ffxnz,DC=co,DC=nz.

Modifying attributes: dBCSPwd, lastagedchange,

Previous entry took 0 seconds (0, 0) to process

Processing Entry: Page 1, Frame 1, Entry 7, Count 1, USN 0

Processing source entry <guid=6133729905f24e45b1ba65c9b9694414>

Skipping deletion of object which does not exist locally.

Previous entry took 0 seconds (0, 0) to process

Processing Entry: Page 1, Frame 1, Entry 8, Count 1, USN 0

Processing source entry <guid=e3fadf8e83fc3e48a507e7749862e4de>

Skipping deletion of object which does not exist locally.

Previous entry took 0 seconds (0, 0) to process

Processing Entry: Page 1, Frame 1, Entry 9, Count 1, USN 0

Processing out-of-scope entry
dc=cpladt001,dc=ffxnz.co.nz,cn=microsoftdns,cn=system,dc=ffxnz,dc=co,dc=nz
under dynamic scope CN=MicrosoftDNS,CN=System,DC=ffxnz,DC=co,DC=nz.

Processing source entry <guid=9d8619370665c94c8ec025e4018ab01f>

Previous entry took 0 seconds (0, 0) to process

Processing Entry: Page 1, Frame 1, Entry 10, Count 1, USN 0

Processing source entry <guid=e33f4b83f15a29478a6ca95e73c0a486>

Processing in-scope entry e33f4b83f15a29478a6ca95e73c0a486.

Modifying target object CN=Nofoaiga
Apulu,OU=ACP,OU=Users,OU=SNL,DC=ffxnz,DC=co,DC=nz.

Modifying attributes: lastagedchange,

Previous entry took 0 seconds (0, 0) to process

Processing Entry: Page 1, Frame 1, Entry 11, Count 1, USN 0

Processing source entry <guid=2f96162bee001d41af7a7bcf23f9bf8a>

Processing in-scope entry 2f96162bee001d41af7a7bcf23f9bf8a.

Modifying target object
CN=DPTPP2100,OU=PrePress,OU=Wellington,OU=Computers,OU=DPT,DC=ffxnz,DC=co,DC=nz.

Modifying attributes: dBCSPwd, lastagedchange,

Previous entry took 0 seconds (0, 0) to process

Processing Entry: Page 1, Frame 1, Entry 12, Count 1, USN 0

Processing source entry <guid=dba45919aa4c624c9e06f996a6849e20>

Processing in-scope entry dba45919aa4c624c9e06f996a6849e20.

Modifying target object
CN=WKT969,OU=Servers,OU=WKT,DC=ffxnz,DC=co,DC=nz.

Modifying attributes: lastagedchange,

Previous entry took 0 seconds (0, 0) to process

Processing Entry: Page 1, Frame 1, Entry 13, Count 1, USN 0

Processing out-of-scope entry
dc=cplad0999,dc=ffxnz.co.nz,cn=microsoftdns,cn=system,dc=ffxnz,dc=co,dc=nz
under dynamic scope CN=MicrosoftDNS,CN=System,DC=ffxnz,DC=co,DC=nz.

Processing source entry <guid=5466d005e7465e46b3a5773ce0ba306b>

Previous entry took 0 seconds (0, 0) to process

Processing Entry: Page 1, Frame 1, Entry 14, Count 1, USN 0

Processing out-of-scope entry
dc=ffx333,dc=ffxnz.co.nz,cn=microsoftdns,cn=system,dc=ffxnz,dc=co,dc=nz
under dynamic scope CN=MicrosoftDNS,CN=System,DC=ffxnz,DC=co,DC=nz.

Processing source entry <guid=5a7bb010d11d774b8e9cf1b17be33178>

Previous entry took 0 seconds (0, 0) to process

Processing Entry: Page 1, Frame 1, Entry 15, Count 1, USN 0

Processing source entry <guid=f28ec1ea88610a469711fb87489a1554>

Processing in-scope entry f28ec1ea88610a469711fb87489a1554.

Modifying target object
CN=FFXFN0580,OU=Wellington,OU=Computers,OU=FFX,DC=ffxnz,DC=co,DC=nz.

Modifying attributes: lastagedchange,

Previous entry took 0 seconds (0, 0) to process

Processing Entry: Page 1, Frame 1, Entry 16, Count 1, USN 0

Processing source entry <guid=7fefbc4a05f0f942885358c50d9026e7>

Processing in-scope entry 7fefbc4a05f0f942885358c50d9026e7.

Modifying target object
CN=CPLPR0909,OU=CPLPR,OU=Laptops,OU=Computers,OU=CPL,DC=ffxnz,DC=co,DC=nz.

Modifying attributes: lastagedchange,

Previous entry took 0 seconds (0, 0) to process

Processing Entry: Page 1, Frame 1, Entry 17, Count 1, USN 0

Processing source entry <guid=af6765b580c135408afbd1a6d65b1559>

Skipping deletion of object which does not exist locally.

Previous entry took 0 seconds (0, 0) to process

Processing Entry: Page 1, Frame 1, Entry 18, Count 1, USN 0

Processing source entry <guid=38cf95a6bb92bc438051b5febc67e4b5>

Processing in-scope entry 38cf95a6bb92bc438051b5febc67e4b5.

Modifying target object CN=FXSIS0001,OU=IT,OU=Eden
Terrace,OU=Computers,OU=FXS,DC=ffxnz,DC=co,DC=nz.

Modifying attributes: dBCSPwd, lastagedchange,

Previous entry took 0 seconds (0, 0) to process

Processing Entry: Page 1, Frame 1, Entry 19, Count 1, USN 0

Processing source entry <guid=851e79cbf3044045b168e17f02eacbde>

Processing in-scope entry 851e79cbf3044045b168e17f02eacbde.

Modifying target object
CN=FFX301,OU=Exchange,OU=Wellington,OU=Servers,OU=FFX,DC=ffxnz,DC=co,DC=nz.

Modifying attributes: lastagedchange,

Previous entry took 0 seconds (15, 0) to process

Processing Entry: Page 1, Frame 1, Entry 20, Count 1, USN 0

Processing source entry <guid=81fb0e4e2b84cb4d8ae94d94753f7192>

Processing in-scope entry 81fb0e4e2b84cb4d8ae94d94753f7192.

Modifying target object CN=FFX160,OU=Domain
Controllers,DC=ffxnz,DC=co,DC=nz.

Modifying attributes: dBCSPwd, lastagedchange,

Previous entry took 0 seconds (0, 0) to process

Processing Entry: Page 1, Frame 1, Entry 21, Count 1, USN 0

Processing source entry <guid=0df055645da15c43bc868df6a488a21a>

Processing in-scope entry 0df055645da15c43bc868df6a488a21a.

Modifying target object CN=TNLPP0015,OU=New
Plymouth,OU=Computers,OU=TNL,DC=ffxnz,DC=co,DC=nz.

Modifying attributes: lastagedchange,

Previous entry took 0 seconds (16, 0) to process

Processing Entry: Page 1, Frame 1, Entry 22, Count 1, USN 0

Processing out-of-scope entry
dc=ffxis0099,dc=ffxnz.co.nz,cn=microsoftdns,cn=system,dc=ffxnz,dc=co,dc=nz
under dynamic scope CN=MicrosoftDNS,CN=System,DC=ffxnz,DC=co,DC=nz.

Processing source entry <guid=47945bf3b337a6408c8fdd284d7eb0f8>

Previous entry took 0 seconds (0, 0) to process

Processing Entry: Page 1, Frame 1, Entry 23, Count 1, USN 0

Processing out-of-scope entry
dc=dpt300,dc=ffxnz.co.nz,cn=microsoftdns,cn=system,dc=ffxnz,dc=co,dc=nz
under dynamic scope CN=MicrosoftDNS,CN=System,DC=ffxnz,DC=co,DC=nz.

Processing source entry <guid=9501f9675b79f54694f5e05c8a4f55be>

Previous entry took 0 seconds (0, 0) to process

Processing Entry: Page 1, Frame 1, Entry 24, Count 1, USN 0

Processing out-of-scope entry
dc=52,dc=52.36.202.in-addr.arpa,cn=microsoftdns,cn=system,dc=ffxnz,dc=co,dc=nz
under dynamic scope CN=MicrosoftDNS,CN=System,DC=ffxnz,DC=co,DC=nz.

Processing source entry <guid=2f43e85946718442ad8940840131f375>

Previous entry took 0 seconds (0, 0) to process

Processing Entry: Page 1, Frame 1, Entry 25, Count 1, USN 0

Processing source entry <guid=e7ec89ecda09d44cb32dfec32c9f95dd>

Processing in-scope entry e7ec89ecda09d44cb32dfec32c9f95dd.

Modifying target object
CN=WKT010,OU=Servers,OU=WKT,DC=ffxnz,DC=co,DC=nz.

Modifying attributes: lastagedchange,

Previous entry took 0 seconds (0, 0) to process

Processing Entry: Page 1, Frame 1, Entry 26, Count 1, USN 0

Processing out-of-scope entry
dc=wktad0308,dc=ffxnz.co.nz,cn=microsoftdns,cn=system,dc=ffxnz,dc=co,dc=nz
under dynamic scope CN=MicrosoftDNS,CN=System,DC=ffxnz,DC=co,DC=nz.

Processing source entry <guid=425ab6695bf9a544a283259f8efda2c2>

Previous entry took 0 seconds (15, 0) to process

Processing Entry: Page 1, Frame 1, Entry 27, Count 1, USN 0

Processing source entry <guid=849db5a2f76ef74fabc43d6a5c2639e1>

Processing in-scope entry 849db5a2f76ef74fabc43d6a5c2639e1.

Modifying target object CN=CCNED0102,OU=Lower
Hutt,OU=Computers,OU=CCN,DC=ffxnz,DC=co,DC=nz.

Modifying attributes: lastagedchange,

Previous entry took 0 seconds (0, 0) to process

Processing Entry: Page 1, Frame 1, Entry 28, Count 1, USN 0

Processing source entry <guid=bba03dfad54ada49985feb016e92919a>

Processing in-scope entry bba03dfad54ada49985feb016e92919a.

Modifying target object CN=CPLONK002,OU=HP
Servers,OU=Servers,OU=CPL,DC=ffxnz,DC=co,DC=nz.

Modifying attributes: lastagedchange,

Previous entry took 0 seconds (0, 0) to process

Processing Entry: Page 1, Frame 1, Entry 29, Count 1, USN 0

Processing source entry <guid=14cb9f921b80e347977c80b91c73e7af>

Processing in-scope entry 14cb9f921b80e347977c80b91c73e7af.

Modifying target object
CN=NMLRIP02,OU=Servers,OU=NML,DC=ffxnz,DC=co,DC=nz.

Modifying attributes: lastagedchange,

Previous entry took 0 seconds (0, 0) to process

Processing Entry: Page 1, Frame 1, Entry 30, Count 1, USN 0

Processing source entry <guid=fd4ae781e57a8b4d82d457bdfe7f3375>

Processing in-scope entry fd4ae781e57a8b4d82d457bdfe7f3375.

Modifying target object CN=FXSMK0004,OU=Marketing,OU=Eden
Terrace,OU=Computers,OU=FXS,DC=ffxnz,DC=co,DC=nz.

Modifying attributes: dBCSPwd, lastagedchange,

Previous entry took 0 seconds (0, 0) to process

Processing Entry: Page 1, Frame 1, Entry 31, Count 1, USN 0

Processing source entry <guid=c0442f5afb119043ae2ce347a48947b2>

Processing in-scope entry c0442f5afb119043ae2ce347a48947b2.

Modifying target object
CN=FFXIS0011,OU=Other,OU=Wellington,OU=Computers,OU=DPT,DC=ffxnz,DC=co,DC=nz.

Modifying attributes: lastagedchange,

Previous entry took 0 seconds (0, 0) to process

Processing Entry: Page 1, Frame 1, Entry 32, Count 1, USN 0

Processing out-of-scope entry
dc=ccned0126,dc=ffxnz.co.nz,cn=microsoftdns,cn=system,dc=ffxnz,dc=co,dc=nz
under dynamic scope CN=MicrosoftDNS,CN=System,DC=ffxnz,DC=co,DC=nz.

Processing source entry <guid=d4914a6eba7c9e45a79dc1bcd8d11106>

Previous entry took 0 seconds (0, 0) to process

Processing Entry: Page 1, Frame 1, Entry 33, Count 1, USN 0

Processing source entry <guid=5a38f850fd9e9642b895cd68c7f8cc79>

Processing in-scope entry 5a38f850fd9e9642b895cd68c7f8cc79.

Modifying target object CN=IUSR_FFX150,CN=Users,DC=ffxnz,DC=co,DC=nz.

Modifying attributes: lastagedchange,

Previous entry took 0 seconds (0, 0) to process

Processing Entry: Page 1, Frame 1, Entry 34, Count 1, USN 0

Processing source entry <guid=8ea613b17b82834497200ef66a26667b>

Processing in-scope entry 8ea613b17b82834497200ef66a26667b.

Modifying target object
CN=STLAD0852,OU=MSG,OU=Desktops,OU=Computers,OU=STL,DC=ffxnz,DC=co,DC=nz.

Modifying attributes: dBCSPwd, lastagedchange,

Previous entry took 0 seconds (0, 0) to process

Processing Entry: Page 1, Frame 1, Entry 35, Count 1, USN 0

Processing source entry <guid=499f549fe35d5c4a82b562864eeeef94>

Skipping deletion of object which does not exist locally.

Previous entry took 0 seconds (0, 0) to process

Processing Entry: Page 1, Frame 1, Entry 36, Count 1, USN 0

Processing source entry <guid=4c112376fc90b445b20dcba333c282d9>

Processing in-scope entry 4c112376fc90b445b20dcba333c282d9.

Modifying target object
CN=TNLDS0017,OU=Stratford,OU=Computers,OU=TNL,DC=ffxnz,DC=co,DC=nz.

Modifying attributes: lastagedchange,

Previous entry took 0 seconds (16, 0) to process

Processing Entry: Page 1, Frame 1, Entry 37, Count 1, USN 0

Processing source entry <guid=377f9f5ce86e48499eb6331dc52433f6>

Processing in-scope entry 377f9f5ce86e48499eb6331dc52433f6.

Modifying target object
CN=STLAD0752,OU=IVC,OU=Desktops,OU=Computers,OU=STL,DC=ffxnz,DC=co,DC=nz.

Modifying attributes: dBCSPwd, lastagedchange,

Previous entry took 0 seconds (0, 0) to process

Processing Entry: Page 1, Frame 1, Entry 38, Count 1, USN 0

Processing out-of-scope entry
dc=tnled0030,dc=ffxnz.co.nz,cn=microsoftdns,cn=system,dc=ffxnz,dc=co,dc=nz
under dynamic scope CN=MicrosoftDNS,CN=System,DC=ffxnz,DC=co,DC=nz.

Processing source entry <guid=3ede90230ac84c44b77807805ca3229d>

Previous entry took 0 seconds (0, 0) to process

Processing Entry: Page 1, Frame 1, Entry 39, Count 1, USN 0

Processing source entry <guid=d720d20b8eb7c74a9158624b490d6713>

Processing in-scope entry d720d20b8eb7c74a9158624b490d6713.

Modifying target object
CN=THLAD0092,OU=Desktops,OU=Computers,OU=THL,DC=ffxnz,DC=co,DC=nz.

Modifying attributes: dBCSPwd, lastagedchange,

Previous entry took 0 seconds (0, 0) to process

Processing Entry: Page 1, Frame 1, Entry 40, Count 1, USN 0

Processing source entry <guid=e4f7c1eecd591a48a23705e5bc8034d4>

Processing in-scope entry e4f7c1eecd591a48a23705e5bc8034d4.

Modifying target object
CN=WKTPB0002,OU=Publishing,OU=Computers,OU=WKT,DC=ffxnz,DC=co,DC=nz.

Modifying attributes: lastagedchange,

Previous entry took 0 seconds (0, 0) to process

Processing Entry: Page 1, Frame 1, Entry 41, Count 1, USN 0

Processing out-of-scope entry
dc=tnlcpt001,dc=ffxnz.co.nz,cn=microsoftdns,cn=system,dc=ffxnz,dc=co,dc=nz
under dynamic scope CN=MicrosoftDNS,CN=System,DC=ffxnz,DC=co,DC=nz.

Processing source entry <guid=6a98377726e618418ca152af5b53e196>

Previous entry took 0 seconds (0, 0) to process

Processing Entry: Page 1, Frame 1, Entry 42, Count 1, USN 0

Processing out-of-scope entry
dc=ffx319,dc=ffxnz.co.nz,cn=microsoftdns,cn=system,dc=ffxnz,dc=co,dc=nz
under dynamic scope CN=MicrosoftDNS,CN=System,DC=ffxnz,DC=co,DC=nz.

Processing source entry <guid=c875ede1d0a0564aa68589f87c2c3b3b>

Previous entry took 0 seconds (0, 0) to process

Processing Entry: Page 1, Frame 1, Entry 43, Count 1, USN 0

Processing out-of-scope entry
dc=@,dc=52.36.202.in-addr.arpa,cn=microsoftdns,cn=system,dc=ffxnz,dc=co,dc=nz
under dynamic scope CN=MicrosoftDNS,CN=System,DC=ffxnz,DC=co,DC=nz.

Processing source entry <guid=53ce46195765e4409d969be577d9b70a>

Previous entry took 0 seconds (0, 0) to process

Processing Entry: Page 1, Frame 1, Entry 44, Count 1, USN 0

Processing out-of-scope entry
dc=@,dc=54.36.202.in-addr.arpa,cn=microsoftdns,cn=system,dc=ffxnz,dc=co,dc=nz
under dynamic scope CN=MicrosoftDNS,CN=System,DC=ffxnz,DC=co,DC=nz.

Processing source entry <guid=3e231b1e4aee34499f65eda8ae43b810>

Previous entry took 0 seconds (0, 0) to process

Processing Entry: Page 1, Frame 1, Entry 45, Count 1, USN 0

Processing source entry <guid=8aa5df1834d4eb40a2f52f7cc7602b73>

Skipping deletion of object which does not exist locally.

Previous entry took 0 seconds (0, 0) to process

Processing Entry: Page 1, Frame 1, Entry 46, Count 1, USN 0

Processing source entry <guid=bfba3e032572d84fa22e1e4a80ba3f14>

Skipping deletion of object which does not exist locally.

Previous entry took 0 seconds (0, 0) to process

Processing Entry: Page 1, Frame 1, Entry 47, Count 1, USN 0

Processing source entry <guid=bf30069147ea5049aa4556298402c21e>

Skipping deletion of object which does not exist locally.

Previous entry took 0 seconds (0, 0) to process

Processing Entry: Page 1, Frame 1, Entry 48, Count 1, USN 0

Processing source entry <guid=557ccef395e72a449983ed0fec9c649c>

Skipping deletion of object which does not exist locally.

Previous entry took 0 seconds (0, 0) to process

Processing Entry: Page 1, Frame 1, Entry 49, Count 1, USN 0

Processing source entry <guid=a210640b3b8eb84d9a3973a45fae99aa>

Skipping deletion of object which does not exist locally.

Previous entry took 0 seconds (0, 0) to process

Processing Entry: Page 1, Frame 1, Entry 50, Count 1, USN 0

Processing source entry <guid=3f0c64e2f5b2fb42afb5e72f7fcbd153>

Skipping deletion of object which does not exist locally.

Previous entry took 0 seconds (0, 0) to process

Processing Entry: Page 1, Frame 1, Entry 51, Count 1, USN 0

Processing source entry <guid=4d57cdeee6141642be02b2c187e3ebb1>

Skipping deletion of object which does not exist locally.

Previous entry took 0 seconds (0, 0) to process

Processing Entry: Page 1, Frame 1, Entry 52, Count 1, USN 0

Processing source entry <guid=6f743bd8bdab9b4b913fcf191a646786>

Skipping deletion of object which does not exist locally.

Previous entry took 0 seconds (0, 0) to process

Processing Entry: Page 1, Frame 1, Entry 53, Count 1, USN 0

Processing source entry <guid=4e2313fe8321084080c112f2b3e819a8>

Skipping deletion of object which does not exist locally.

Previous entry took 0 seconds (0, 0) to process

Processing Entry: Page 1, Frame 1, Entry 54, Count 1, USN 0

Processing source entry <guid=b2b608b8a4de884ab2d7dc50e9ec906e>

Processing in-scope entry b2b608b8a4de884ab2d7dc50e9ec906e.

Modifying target object
CN=SNLAD0445,OU=Dargaville,OU=Northern,OU=Computers,OU=SNL,DC=ffxnz,DC=co,DC=nz.

Modifying attributes: lastagedchange,

Previous entry took 0 seconds (31, 0) to process

Processing Entry: Page 1, Frame 1, Entry 55, Count 1, USN 0

Processing source entry <guid=38ead5ed56e62d4bab2a47b214d728e5>

Processing in-scope entry 38ead5ed56e62d4bab2a47b214d728e5.

Modifying target object
CN=SNLAD0755,OU=MC,OU=Computers,OU=SNL,DC=ffxnz,DC=co,DC=nz.

Modifying attributes: dBCSPwd, lastagedchange,

Previous entry took 0 seconds (0, 0) to process

Processing Entry: Page 1, Frame 1, Entry 56, Count 1, USN 0

Processing out-of-scope entry
dc=ffx320,dc=ffxnz.co.nz,cn=microsoftdns,cn=system,dc=ffxnz,dc=co,dc=nz
under dynamic scope CN=MicrosoftDNS,CN=System,DC=ffxnz,DC=co,DC=nz.

Processing source entry <guid=1ba72fef169e394f9e273c0c264e9d50>

Previous entry took 0 seconds (0, 0) to process

Processing Entry: Page 1, Frame 1, Entry 57, Count 1, USN 0

Processing source entry <guid=da5b47b13d4282409d2246b9f67ef9b8>

Processing in-scope entry da5b47b13d4282409d2246b9f67ef9b8.

Adding target object CN=Microsoft
Hyper-V,CN=PDCGENPH001,OU=PrePress,OU=PDC,OU=Servers,OU=__Overdrive,dc=partition1,dc=ffxnzlds,dc=co,dc=nz.

Adding attributes: sourceobjectguid, objectClass, instanceType,
showInAdvancedViewOnly, keywords, serviceBindingInformation,
lastagedchange,

Adding target object CN=Microsoft
Hyper-V,CN=PDCGENPH001,OU=PrePress,OU=PDC,OU=Servers,OU=__Overdrive,dc=partition1,dc=ffxnzlds,dc=co,dc=nz.
Requesting replication of parent.

Previous entry took 0 seconds (16, 0) to process

Processing Entry: Page 1, Frame 2, Entry 0, Count 0, USN 116032629

Processing source entry <guid=0010d2001140f046987f50c96480751d>

Processing in-scope entry 0010d2001140f046987f50c96480751d.

(sourceobjectguid=\00\10\d2\00\11\40\f0\46\98\7f\50\c9\64\80\75\1d)
exists in target. Converting object creation to object modification.

Renaming target object (implicit)
CN=PDCGENPH001,CN=Computers,DC=Partition1,DC=FFXNZLDS,DC=CO,DC=NZ to .

Ldap error occured. 21deleteEntry: Other.

Extended Info: 00002089: UpdErr: DSID-031B0CE4, problem 5012
(DIR_ERROR), data 2

Spoon

unread,
Oct 20, 2009, 12:33:15 AM10/20/09
to

So I kind of fixed it, LDS for some reason was had already created a
whole lot of machine accounts into the Computers OU where as in AD all
the machines were all in another OU.

I delete all the accounts in LDS and did another sync and it seems to
get further now but now errors on the following

Processing Entry: Page 51, Frame 1, Entry 38, Count 1, USN 0

Processing source entry <guid=48794cfe1c59ea4a816747e226e4ed26>

Processing in-scope entry 48794cfe1c59ea4a816747e226e4ed26.

Adding target object
CN=wkt548,CN=Computers,dc=partition1,dc=ffxnzlds,dc=co,dc=nz.

Adding attributes: sourceobjectguid, objectClass, instanceType,

localPolicyFlags, sAMAccountName, operatingSystem,
operatingSystemVersion, dNSHostName, userPrincipalName, lastagedchange,


Ldap error occured. ldap_add_sW: Attribute Or Value Exists.

Extended Info: 0000217B: AtrErr: DSID-03050789, #1:
0: 0000217B: DSID-03050789, problem 1006 (ATT_OR_VALUE_EXISTS), data
0, Att 90290 (userPrincipalName)

Lee Flight

unread,
Oct 20, 2009, 9:12:09 AM10/20/09
to

Hi

seems like you are trying sync an object from AD that has a
userPrincipalName
that's colliding with the userPrincipalName of an existing object,
userPrincipalName
is an attribute that the ADAM instance will try to maintain as unique.
If you find the userPrincipalName of the object that is failing below and
search
for that userPrincipalName in your ADAM instance that should locate the
conflicting
object.

Lee Flight

"Spoon" <Spoon....@DoNotSpam.com> wrote in message
news:Spoon....@DoNotSpam.com...
>

Spoon

unread,
Oct 20, 2009, 6:43:45 PM10/20/09
to

Yeah, that's pretty much what I did and then deleted the conflicting
items in LDS and did a sync. I just have no idea how it got messed up in
the first place...
0 new messages