VMware Cloud Community
Naineyess
Enthusiast
Enthusiast
‎09-23-2013 06:40 AM

Getting error while creating a new user (by using default AD workflow..) ???

I am not able to create a new user in one of the OU created using workflow ...And I am getting the below errors .. :-


1st one is :- (LdapErr)

Unable to create a new user: InternalError: Failed to create user account... [LDAP: error code 53 - 00002035: LdapErr: DSID-0C090BF4, comment: Operation not allowed through GC port, data 0, v1db0 ] (Dynamic Script Module name : createUser#1) (Dynamic Script Module name : createUser#4)

2nd one is :- (SVCErr)

Unable to create a new user: InternalError: Failed to create user account... [LDAP: error code 53 - 0000052D: SvcErr: DSID-031A120C, problem 5003 (WILL_NOT_PERFORM), data 0

] (Dynamic Script Module name : createUser#1) (Dynamic Script Module name : createUser#4)

Please help me with that .. .???


Thanks .. !!

4 Replies
tschoergez
Leadership
Leadership
‎09-23-2013 09:20 AM

Hi,

see here for some guideline and links how to troublshoot LDAP issues:

http://www.vcoportal.de/2011/07/troubleshooting-ldap-erros-in-vco/

A list of possible error numbers can be found here: http://docs.oracle.com/javase/tutorial/jndi/ldap/exceptions.html

In your case it is likely an issue with password restrictions (e.g. you are trying to create an user without specifying a password, but the AD config needs one. Or the password does not meet the requirements... )

Cheers,

Joerg

Naineyess
Enthusiast
Enthusiast
‎09-26-2013 06:09 AM

Thanks for your help .. Smiley Happy

0 Kudos
Burke-
VMware Employee
VMware Employee
‎09-29-2013 10:52 PM

Based on the errors you mention, it seems your password policies are not allowing you to create a user account with an empty password. You have a couple options here:

1) Change security policy to allow empty password - likely not recommended or supported by security team Smiley Wink

2) Use the other workflow that creates a user WITH a password. Caveat: You must have your AD plug-in configured to use SSL. You can ONLY create users with passwords or set passwords if the AD plug-in is using SSL.

Good luck!

If my answer resolved or helped you, please mark it as Correct or Helpful to award points. Thank you!

Visit http://www.vcoteam.info & http://blogs.vmware.com/orchestrator
for vRealize Orchestrator tips and tutorials - @TechnicalValues on Twitter
kdmahskey
Contributor
Contributor
‎07-07-2023 01:47 AM

Check if you are using SSL connection, SSL connection is must to work with AD through automation.

KMahskey
0 Kudos