and more in a single search tool across platforms. Read the announcement here. |
06/07/2023 07:19 AM
Hello,
We are trying to provision access for accounts in OpenLDAP. The account provisioning through tasks itself works fine, but the access provisioning through tasks does not work and gives an error.
Explanation:
We have a user with username 0071511. This user has been granted an account on OpenLDAP. This account gets 4 entitlements through rules (these show up as add access tasks, see screenshot).
All of these entitlements granted are entitlement_type "member". This is because in our OpenLDAP, the attribute name for group account linking is member.
Once we try to provision this access, we get this error code:
Error while ADD operation for account-0071511 to Group-cn=055,ou=(OU),o=(O),c=BE in AD - [LDAP: error code 17 - : empty AttributeDescription]
If we check our OpenLDAP groups, we can see this is the correct attribute to use:
Does anyone have any idea why this access is not getting provisioned? We have tried searching for the error code, but this didn't make us any wiser.
06/07/2023 02:45 PM
Is the name of your entitlementtype = member?
06/08/2023 12:16 AM
It says it in the post, all of these entitlements are of entitlement type member.