Re: ADAM userProxy roadblock

Tech-Archive recommends: Fix windows errors by optimizing your registry

For the LDP binary shortcut, I said

\SID:

not

/SID:

Try that instead.

However, if things are behaving consistently, that should give you the same
error that LDIF gave you. Are you sure the SID for the user you are trying
to proxy belongs to a user who is in a domain with a trust relationship to
the domain the ADAM server is joined to?

Joe K.
--
Joe Kaplan-MS MVP Directory Services Programming
Co-author of "The .NET Developer's Guide to Directory Services Programming"
http://www.directoryprogramming.net
--
"choukse" <choukse.305ije@xxxxxxxxxxxxx> wrote in message
news:choukse.305ije@xxxxxxxxxxxxxxxx

Hi Joe,

I tried with the binary value as well by getting it from the AD
export.
objectSid::AQUAAAAAAAUVAAAAYUloRzY9c6zzXaMUTwQAAA==
but, still I got the same error
-------------------
C:\WINDOWS\ADAM>ldifde -i -f "C:\Documents and
Settings\choukse\Desktop\user.ldf
" -s localhost:50000 -j "C:\Documents and Settings\choukse\Desktop"
Connecting to "localhost:50000"
Logging in as current user using SSPI
Importing directory from file "C:\Documents and
Settings\choukse\Desktop\user.ldf"
Loading entries.
Add error on line 1: Unwilling To Perform
The server side error is: 0x20e7 The modification was not permitted for
security
reasons.
The extended server error is:
000020E7: SvcErr: DSID-03152AA9, problem 5003 (WILL_NOT_PERFORM), data
8471

0 entries modified successfully.
An error has occurred in the program
-------------------

While trying to add proxy element using ldp with objectSID value as
/SID:S-1-5-21-1198016865-2893233462-346250739-1103

I got other error as below

-----------
***Calling Add...
ldap_add_s(ld, "CN=testproxy,O=Nortel,C=CA", [2] attrs)
Error: Add: Constraint Violation. <19>
Server error: 00002082: AtrErr: DSID-03151346, #1:
0: 00002082: DSID-03151346, problem 1005 (CONSTRAINT_ATT_TYPE), data
0, Att 90092 (objectSid):len 50

Error 0x2082 A value for the attribute was not in the acceptable range
of values.
-----------


--
choukse
------------------------------------------------------------------------
choukse's Profile: http://forums.techarena.in/member.php?userid=34893
View this thread: http://forums.techarena.in/showthread.php?t=439571

http://forums.techarena.in



.

Relevant Pages

  • Re: symmetric key generation between server and client
    ... Joe Kaplan-MS MVP Directory Services Programming ... Co-author of "The .NET Developer's Guide to Directory Services Programming" ... I have developed a client and server application. ...
    (microsoft.public.dotnet.security)
  • Re: Schema modification ldif does work on replicated ADAM
    ... What is the LDIF file and command line you use for ldifde? ... Joe Kaplan-MS MVP Directory Services Programming ... Co-author of "The .NET Developer's Guide to Directory Services Programming" ... The server side error is: 0x202b A referral was returned from the ...
    (microsoft.public.windows.server.active_directory)
  • Re: ADAM Bind-Help required
    ... Joe Kaplan-MS MVP Directory Services Programming ... Co-author of "The .NET Developer's Guide to Directory Services Programming" ... I am trying to bind to an ADAM user account on ... ADAM server. ...
    (microsoft.public.windows.server.active_directory)
  • Re: How to add a user to a group and programatically see that in i
    ... Joe Kaplan-MS MVP Directory Services Programming ... Co-author of "The .NET Developer's Guide to Directory Services Programming" ... the server that it ...
    (microsoft.public.platformsdk.security)
  • Re: HRESULT: 0X80070490 with Azman and AD LDS on 2008 server
    ... One easy way to have done this would have been to make the LDS server a replica in a configuration set with the original ADAM so that AzMan could basically use either store interchangeably and you could master the actual policy information from either of them. ... Co-author of "The .NET Developer's Guide to Directory Services Programming" ...
    (microsoft.public.dotnet.framework.aspnet.security)