Skip to end of metadata
Go to start of metadata

Purpose

You try setting a password from IdM to an MS Active Directory Server this fails

Overview

We will detail how to check why a password may not be set successfully in the LDAP Directory Server.

Checking errors

When setting any password in IdM and provisioning to connected repositories the MX_ENCRYPTED_PASSWORD attribute must be filled in order to initiate provisioning. If you use the standard provisioning framework and Password provisioning is enabled on the identity store then this ocurs automatically. If you are developing your own tasks or jobs then this should be noted. Secondly ensure that SSL is enabled between the idM application and the Active Directory Server.

Always check the repository plugin task job log that will be generated when setting a password. If SSL is not enabled then the Active Directory server may respond with the error

operation:javax.naming.OperationNotSupportedException: [LDAP: error code 53 - 0000001F: SvcErr: DSID-031A120C, problem 5003 (WILL_NOT_PERFORM), data 0].

(in this case Windows 2008 server)

Related Content

  Identity Management for SAP System Landscapes: Configuration Guide 

Related Documents

IdM 7.2 Central Documentation

Related SAP Notes/KBAs

Insert links to any related SAP Notes/KBAs that support your topic or are related. Please hyperlink ONLY SAP Note or KBA number.
Example:

SAP Note 83020: What is consulting, what is support

 

(Use the following Hyperlink with SAP Note/KBA number at end: https://service.sap.com/sap/support/notes/123456)
__________________________________________________________________________________________________________

 

  • No labels