LDAP device/user group import fails

Document ID : KB000008066
Last Modified Date : 14/02/2018
Show Technical Document Details
Issue:

PAM custom administrators are not able to import LDAP users or devices. 

While trying the following error is shown: 
9013 = Unauthorized attempt to retrieve the configuration for LDAP domains. 

 

Cause:

This started to occur since CA PAM release 2.8.2. 

where two new privileges were introduced: userGroupAdd and userGroupDevice. 

Ensure that these two privileges are added to the custom Role the administrator belongs to.

Resolution:

Go to Users>>Manage Roles. 

Ensure that the role has been extended by the following privileges:

userGroupAdd: to import Users

userGroupDevice: to import Devices

Additional Information: