Hello,
I have an issue with projecting new users into AD in my development install. The process ends in error with the following :
Internal error in COM access layer: number: 80072035: The server is unwilling to process the request.
I have researched the Windows AD error online with many of the comments relating to complexity of password not conforming to policy, as well as the connecting user on the domain not having the required rights to create the projected user. Here are the pertinent details regarding the projection:
- The job server resides on a parent domain (a) and is connected to target domain (b) by one-way trust
- Job service login user is domain admin in domain (a)
- Sync editor connection to domain (b) is using a domain admin user in domain (b)
- Initial synchronization using synchronization project (bullet 3.) from AD into ADSAccount table in One Identity was successful
- After attaching a sample person to account definition, ADS_ADSAccount_Insert fails at AdHocProjection
- I have altered the job log to level TRACE and reveals the following
- JobServer: error message breaks after the entry "vrtPassword should be set."
- StudioProcessor: "Error executing user_password_Set on object" ... "Error: Exception has been trhown by the target of an invocation.)."
- We have successfully set the password manually for a test user on the domain with the domain admin account used in sync connection using the initial password value.
- ADSAccount table has initial password set in UserPassword column correctly.
- vrtPassword mapping in the User class on Synchronization project has been left standard. No modifications to the mapping has been made.
Because the error thrown shows immediately after trying to set property vrtPassword, there seems to be an issue with the password or its value. But, we have successfully set a password manually.
Thanks in advance for any recommendations.
