Saviynt unveils its cutting-edge Intelligence Suite products to revolutionize Identity Security!
Click HERE to see how Saviynt Intelligence is transforming the industry. Saviynt Copilot Icon
This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
No ratings

How to resolve issue: AD New Account Task failing with LDAP Error code 80

sudeshjaiswal
Saviynt Employee
Saviynt Employee

on ‎03/30/2023 10:24 AM

Use Case

A New Account Task for an AD Endpoint failed with LDAP Error Code 80.

In the logs following error is observed:

Creating Account dn-CN=TEST12345678987654321234,OU=Georgia Users,OU=Domain Users,DC=nbc,DC=local Datamap--[mail:TEST12345678987654321234@abc.com,accountExpires:0,UnicodePwd:****,employeeID:003889,title:Electronic Banking Specialist,homedrive:P:,employeeNumber:09/21,division:TM Operations Wire Transfer,ScriptPath:StateLoginScript.bat,homedirectory:\\\\nbc.local\\drumline\\home\\TEST12345678987654321234 ,givenname:TestUser,company:TESTCOMPANY,sn:TEST12345678987654321234 ,department:Treasury Operations,userAccountControl:512,userPrincipalName:TEST12345678987654321234 @abc.com,mailNickname:TEST12345678987654321234 ,st:GA,ipPhone:2020-10-26 00:00:00.0,physicalDeliveryOfficeName:macon,sAMAccountName:TEST12345678987654321234 ,initials:M,objectClass:[top, person, organizationalPerson, user],l:Macon,co:United States,proxyAddresses:[SMTP:TEST12345678987654321234 @abc.com],streetAddress:4885 Riverside Drive - null,displayname:TEST12345678987654321234 ,pwdLastSet:0,] 

2020-10-22 18:17:58,321 [quartzScheduler_Worker-1] ERROR ldap.SaviyntGroovyLdapService  - Error while creating account in AD - [LDAP: error code 80 - 00000523: SysErr: DSID-031A124A, problem 22 (Invalid argument), data 0

 

Pre-requisites


AD Connection

 

Applicable Version(s)


All
 

Solution

On of the reason for LDAP error code 80 could be because the task fails because there is a character restriction on the AD samaccountname. The restriction is of 20 characters. The system username of this user is greater than 20 characters therefore we are receiving LDAP error code 80 while provisioning. This is a restriction the customer has set on Target AD.

To provision, the task, either the customer will have to increase the character restriction of 20 characters for Saviynt this task or the samaccountname of the users should be less than 20 characters to avoid such a failure.

 

References

https://docs.saviyntcloud.com/bundle/AD-v2021x/page/Content/Configuring-the-Integration-for-Importin...

Labels:
0 Kudos
Comments
KarthikaMoorti
New Contributor
New Contributor
‎07/03/2024 08:09 AM

Hi @sudeshjaiswal,

We received an error while creating new AD Account as below.

[LDAP: error code 80 - 00000523: SysErr: DSID-031A1242, problem 22 (Invalid argument), data 0 ]

The user's system username has the below format:

ab.Johnab.

The special character at the end '.' causing this Invalid argument error?

sudeshjaiswal
Saviynt Employee
Saviynt Employee
‎07/04/2024 01:39 AM

Hello @KarthikaMoorti,

The special character is not allowed in samaccountname in AD.

Thanks.

KarthikaMoorti
New Contributor
New Contributor
‎07/10/2024 06:13 AM

Thanks for your response @sudeshjaiswal 

Version history
Last update:
‎03/30/2023 10:23 AM
Updated by:
Saviynt Employee
Contributors
Copyright © 2024 Khoros, LLC