Error: "pdm_ldap_import: No Records found to process" When loading data from an Organizational Unit (OU)

Document ID : KB000009170
Last Modified Date : 14/02/2018
Show Technical Document Details
Issue:

The following error appears when running a pdm_ldap_import command using the memberOf attribute against an Organizational Unit (OU)

Example:

pdm_ldap_import -n "andes" -l "memberOf= 'OU=Administradores B,OU=Administradores TI,DC=areandina,DC=local'"

este es el resultado de la ejecución del comando:

C:\Users\svc_CAIntegration>pdm_ldap_import -n "andes" -l "memberOf= 'OU=Administradores B,OU=Administradores TI,DC=areandina,DC=local'"
pdm_ldap_sync: Starting...
pdm_ldap_import: LDAP where clause = "ldap_domain = 'andes' AND memberOf= 'OU=Administradores B,OU=Administradores TI,DC=areandina,DC=local'"
pdm_ldap_import: Contact where clause = "ldap_dn = ?"
pdm_ldap_import: No Records found to process

Environment:
CA Service Desk Manager 14.1 and later
Cause:

The users/groups cannot be member of an Organizational Unit, this is by design in Active Directory, so pdm_ldap_import shows No Records found to process

Resolution:

Use the memberOf but point to a group_dn instead of an Organization Unit. Example:

 

"memberOf= 'CN=groupOU1,OU=pruebaOU1,DC=test,DC=com'"

Additional Information: