Fail to create AD account

Document ID : KB000007367
Last Modified Date : 14/02/2018
Show Technical Document Details
Issue:

Customer was getting the following error while running the provisioning process to create AD accounts: 

 

creation failed: Connector Server Add failed: No such object (ldaps://server:20403) 

Environment:
CA IDM r12.6.8Windows ServerActive Directory endpoint
Cause:

While checking the account template, we noticed that the OU referred at the matched account container rule was missing in AD itself - so Provisioning Server was trying to create an account on a nonexistent OU. 

Resolution:

There are two ways to fix this issue:

 

1. Re-create the missing OU in Active Directory;

 

Or

 

2. Change the destination OU at the Account Container rule to match an existing OU.