• State Not Answered
  • Locked Locked
  • Replies 1 reply
  • Subscribers 95 subscribers
  • Views 3119 views
  • Users 0 members are here
Options
Related
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Error Updating LDAP properties while using Full Synchronization

Poinsot
over 9 years ago

Hello,

I am currently setting an LDAP full synchronization with an Active Directory Application Mode solution.

The mapping of this synchronization seems to work well when there is no master between target system or D1IM.

However, when database is master (in attribute mapping), the following error appears :

2015-07-15 10:25:29 +02:00 - VI.JobService.JobComponents.LDAPADSIComponent - d4a042e8-834c-4a04-a6f5-bef7a7076328: Errors occured Loading import file G:\Quest Software\Quest One Identity Manager\LDAPADSIComponent.Dll.Xml has changed the object property assignment rules and the member relationships. Last action taken by target system provider was: 2015-07-15 10:25:29 +02:00 - Info - Name query is answered. Try to set property NAME. Object type: personnes Object: LDAP://ADAMPIG:389/<GUID=D87D6A8263C1CB4085E7690898992002> Property: NAME Message: set successfully. Try to set property METIER. Property METIER not set. ([System.Runtime.InteropServices.COMException] Directory service could not operate on rdn attribute. ) Try to set property COMPANY. Property COMPANY not set. ([System.Runtime.InteropServices.COMException] Directory service could not operate on rdn attribute. ) Objecttype: personnes Object: LDAP://ADAMPIG:389/<GUID=D87D6A8263C1CB4085E7690898992002> Error: Error setting properties NAME; METIER; COMPANY; . ([1100030] Object LDAP://ADAMPIG:389/<GUID=D87D6A8263C1CB4085E7690898992002> could not be written (Message: Le service d’annuaire ne peut pas effectuer l’opération requise sur l’attribut RDN d’un objet. ). [System.DirectoryServices.DirectoryServicesCOMException] Directory service could not operate on rdn attribute. ) Try to set property SN. Property SN not set. ([System.Runtime.InteropServices.COMException] Directory service could not operate on rdn attribute. ) Try to set property UIDREG. Property UIDREG not set. ([System.Runtime.InteropServices.COMException] Directory service could not operate on rdn attribute. ) Try to set property TELEPHONENUMBER. Object type: personnes Object: LDAP://ADAMPIG:389/<GUID=D87D6A8263C1CB4085E7690898992002> Property: TELEPHONENUMBER Message: set successfully. Objecttype: personnes Object: LDAP://ADAMPIG:389/<GUID=D87D6A8263C1CB4085E7690898992002> Error: Error setting properties SN; UIDREG; TELEPHONENUMBER; . ([1100030] Object LDAP://ADAMPIG:389/<GUID=D87D6A8263C1CB4085E7690898992002> could not be written (Message: Directory service could not operate on rdn attribute.) ). [System.DirectoryServices.DirectoryServicesCOMException] Directory service could not operate on rdn attribute. ) Try to set property TITLE. Property TITLE not set. ([System.Runtime.InteropServices.COMException] Directory service could not operate on rdn attribute. ) Try to set property CN. Object type: personnes Object: LDAP://ADAMPIG:389/<GUID=D87D6A8263C1CB4085E7690898992002> Property: CN Message: set successfully. Try to set property MAIL. Property MAIL not set. ([System.Runtime.InteropServices.COMException] Directory service could not operate on rdn attribute. ) Objecttype: personnes Object: LDAP://ADAMPIG:389/<GUID=D87D6A8263C1CB4085E7690898992002> Error: Error setting properties TITLE; CN; MAIL; . ([1100030] Object LDAP://ADAMPIG:389/<GUID=D87D6A8263C1CB4085E7690898992002> could not be written (Message: Directory service could not operate on rdn attribute. ). [System.DirectoryServices.DirectoryServicesCOMException] Directory service could not operate on rdn attribute. ) [1101003] Process task Object Update failed. [1101016] Error changing object <GUID=D87D6A8263C1CB4085E7690898992002> in LDAP. à StdioProcessor.StdioProcessor._Execute(Job job) à VI.JobService.JobComponents.LDAPADSIComponent.Activate(String Task) ---- Start of Inner Exception ---- à VI.JobService.JobComponents.LDAPADSIComponent.Activate(String Task) à VI.JobService.JobComponents.LDAPADSIComponent.OBJECT_UPDATE()


For example, when I change the Mail of an object in the target system and run a full synchronization, the following error is thrown and the VI_LDAPAccount_Insert/Update(Fullsync) process get Frozen.
This is strange, as Mail is just a text field and is not linked to de DN in any kind of way.

Does someone know why I get the following error ?

PS : all attribute listed in this error are mapped with database as master