Specifying an Active Directory group in the Account Discovery section and launching discovery for an application configured as Windows Domain Service, I am getting "Missing distinguished name" why ?

Document ID : KB000014834
Last Modified Date : 14/02/2018
Show Technical Document Details
Question:

I have configured an application as a Windows Domain Service (WDS) and I have specified  a group in its Account Discovery/Groups section.

Afterwards I have tried to perform an account discovery, but I am always getting "Missing distinguished name" no matter what group and syntax I specify there. 

The account I am using for discovery works for LDAP to Access Manager integration.

What happens and how can I solve it ?

AccountJPG.jpg

Answer:

Whenever defining the account that will be used to perform discovery in the Password Management section of the product, it is necessary to specify in the Distinguished Name (DN) the DN for the account in active directory 

 

Application.jpg