Click HERE to see how Saviynt Intelligence is transforming the industry. |
09/08/2024 11:33 PM - edited 09/08/2024 11:46 PM
Hi, I am trying to disable the AD account using User update rule but it is giving me error while when the task is provisioned (this is a mover scenario)
LDAP: error code 21 - 00000057: LdapErr: DSID-0C0910C0, comment: Error in attribute conversion operation, data 0, v3839
The disable account works fine when I terminate the user, the termination also happens via user update rule.
Can you help me out.
Disable Account JSON:
{
"moveUsertoOU": "OU=DisableduserTest,OU=test,DC=xyz,DC=xyz,DC=xyz",
"userAccountControl": "514",
"extensionAttribute1": "",
"deleteAllGroups": "Yes",
"accountExpires": "${(10000*(user.enddate.getTime() + 7776000000+ 11644473600000))}",
}
Solved! Go to Solution.
09/09/2024 02:18 AM
Hi @AK_28 Can you please share your 2 user update rule details? It looks like data issue.
Regards,
Indra
09/09/2024 03:12 AM - edited 09/09/2024 03:15 AM
This is the mover user update rule
This is the termination rule
09/09/2024 05:47 AM
Does user have valid end date ?
09/09/2024 08:47 PM
In the termination the user have end date but in the mover the user does not have end date. How can I change the json to remove the error?
09/09/2024 09:10 PM
{
"moveUsertoOU": "OU=DisableduserTest,OU=test,DC=xyz,DC=xyz,DC=xyz",
"userAccountControl": "514",
"extensionAttribute1": "",
"deleteAllGroups": "Yes",
"accountExpires": "${(user.enddate != null) ? (10000*(user.enddate.getTime() + 7776000000 + 11644473600000)) : '0'}"
}
09/09/2024 10:44 PM
Hi @AK_28 use if else condition for end date if a person has an end date pass the value otherwise 0