Click HERE to see how Saviynt Intelligence is transforming the industry. |
06/13/2024 01:24 PM
When we try to provision AD Create Account received the below error:
Error while creating account in AD - [LDAP: error code 19 - 00002082: AtrErr: DSID-03151F1C, #1: 0: 00002082: DSID-03151F1C, problem 1005 (CONSTRAINT_ATT_TYPE), data 0, Att 6 (c):len 14 ]
Create AccountJSON:
{
"accountExpires": "${if(user?.enddate!=null){(((user?.enddate.getTime()+11644473600000)*10000)+900000000000)}else {0}}",
"c": "${user?.companyname}",
"cn": "${cn}",
"co": "${user?.country}",
"department": "${user?.departmentname}",
"description": "${user?.title}",
"displayname": "${user?.displayname}",
"employeeID": "${user?.employeeid}",
"employeetype": "${user?.employeeType}",
"givenName": "${user?.firstname}",
"mail": "${user?.email}",
"manager": "${managerAccount?.accountID==null?'':managerAccount?.accountID}",
"name": "${user?.displayname}",
"objectClass": ["top", "person", "organizationalPerson", "user"],
"sAMAccountName": "${task?.accountName}",
"sn": "${user?.lastname}",
"title": "${user?.title}",
"userprincipalname": "${user?.email.toString().toLowerCase()}"
}
06/13/2024 08:38 PM - edited 06/13/2024 08:39 PM
{
"cn": "${cn}",
"givenName": "${user?.firstname}",
"sn": "${user?.lastname}",
"displayname": "${user?.displayname}",
"sAMAccountName": "${task?.accountName}",
"userprincipalname": "${user?.email.toString().toLowerCase()}",
"objectClass": ["top", "person", "organizationalPerson", "user"]
}
06/14/2024 12:10 PM
Hi @rushikeshvartak, this what we exactly have in our JSON.
06/15/2024 10:03 PM
Could you kindly provide a detailed snapshot of the information extracted from the logs, encompassing errors and other pertinent functionality details encountered during the execution of this process? Your assistance in furnishing this information would greatly aid in the analysis and resolution of any issues .
‼️‼️⚠️Do not upload any attachments that contain sensitive information, such as IP Addresses, URLs, Company/Employee Names, Email Addresses, etc.⚠️‼️‼️
06/17/2024 09:31 AM
Tried updating the manager attribute JSON as below and task failed.
"manager": "${managerAccount?.accountID !=null?managerAccount.accountID:''}"
Attached is the error screenshot what we received in logs.
06/17/2024 10:21 AM
Does it works without manager attribute ?
06/17/2024 10:57 AM
Removed manager attribute but still it fails with below error.
Error while creating account in AD - [LDAP: error code 19 - 00002082: AtrErr: DSID-03151F1C, #1: 0: 00002082: DSID-03151F1C, problem 1005 (CONSTRAINT_ATT_TYPE), data 0, Att 6 (c):len 14 ]
06/17/2024 06:59 PM
Did you tried below JSON
{
"cn": "${cn}",
"givenName": "${user?.firstname}",
"sn": "${user?.lastname}",
"displayname": "${user?.displayname}",
"sAMAccountName": "${task?.accountName}",
"userprincipalname": "${user?.email.toString().toLowerCase()}",
"objectClass": ["top", "person", "organizationalPerson", "user"]
}
06/18/2024 06:14 AM
Hi Rushikesh,
Yes, we tried the above basic attribute JSON which worked early.
Later we added few more attributes like account expires, manager and it started throwing error. As per my previous statement, we removed manager attribute and tried provisioning yesterday, but still it is throwing error.
06/18/2024 06:16 AM
Which attribute are causing issues ? Does it have proper value ?
06/18/2024 06:33 AM
We are onboarding a user through Import (using .csv file) for testing AD Prov/De-Prov capability.
And we do have proper manager for the user while uploading and the below simple manager JSON worked early.
"manager": "${managerAccount.accountID}"
Also, newly added attribute is account expires and we are passing that value during our .csv file import.
06/18/2024 06:34 AM
[SMALL CORRECTION FROM MY ABOVE STATEMENT]
We are onboarding a user through Import (using .csv file) for testing AD CREATE ACCOUNT capability.
And we do have proper manager for the user while uploading and the below simple manager JSON worked early.
"manager": "${managerAccount.accountID}"
Also, newly added attribute is account expires and we are not passing that value during our .csv file import.
06/18/2024 11:17 AM
Can you share sample screenshot of import sheet and share manager account id exist using data analyzer query
06/18/2024 02:06 PM
06/18/2024 02:23 PM
Accountid exists in account table. You have provided users table screenshot
06/19/2024 09:54 AM - edited 06/19/2024 11:58 AM
Accountid,name and their status.
06/19/2024 11:51 AM
Accountid
06/14/2024 05:27 AM
@KarthikaMoorti try below
"manager": "${ if (managerAccount == null || managerAccount?.accountID == null || managerAccount?.accountID == '' ){''} else {managerAccount?.accountID} }"
06/14/2024 12:09 PM
Hi @Raghu, when we tried updating your JSON for manager attribute it throwed below error:
Error while creating account in AD - Error parsing JSON