Hi,

Hopefully someone can point me in the right direction here. We have an
AD driver linking a domain to eDirectory. When a user is created in the
vault, I want to merge them with an AD object if the AD sAMAccountName
matches the unique attribute (mojDTID) when this is entered onto the
vault object.

However, when modifying the vault user to add the mojDTID, the event
seems to come through as an Add. I also get LDAP_INVALID_DN_SYNTAX, but
I have failed to find the error.

I've attached a log of the event - I can't post the whole log as its
well over the 10000 characters. Any help anyone could give me would be
greatly appreciated.

<input>
<query class-name="user" dest-dn="data\disc\users\Active"
event-id="0" scope="subtree">
<search-class class-name="user"/>
<search-attr attr-name="x121Address">
<value timestamp="1288261703#1"
type="string">testuser_a</value>
</search-attr>
<read-attr/>
</query>
</input>
</nds>
[10/28/10 11:28:20.106]OM1 ST: Submitting document to
subscriber shim:
[10/28/10 11:28:20.107]OM1 ST:
<nds dtdversion="3.5" ndsversion="8.x">
<source>
<product version="3.6.10.4747">DirXML</product>
<contact>Novell, Inc.</contact>
</source>
<input>
<query class-name="user" dest-dn="data\disc\users\Active"
event-id="0" scope="subtree">
<search-class class-name="user"/>
<search-attr attr-name="x121Address">
<value timestamp="1288261703#1"
type="string">testuser_a</value>
</search-attr>
<read-attr/>
</query>
</input>
</nds>
[10/28/10 11:28:20.109]OM1 ST: Remote Interface Driver:
Sending...
[10/28/10 11:28:20.109]OM1 ST:
<nds dtdversion="3.5" ndsversion="8.x">
<source>
<product version="3.6.10.4747">DirXML</product>
<contact>Novell, Inc.</contact>
</source>
<input>
<query class-name="user" dest-dn="data\disc\users\Active"
event-id="0" scope="subtree">
<search-class class-name="user"/>
<search-attr attr-name="x121Address">
<value timestamp="1288261703#1"
type="string">testuser_a</value>
</search-attr>
<read-attr/>
</query>
</input>
</nds>
[10/28/10 11:28:20.111]OM1 ST: Remote Interface Driver:
Document sent.
[10/28/10 11:28:20.136]OM1 :Remote Interface Driver: Received.
[10/28/10 11:28:20.136]OM1 :
<nds dtdversion="1.1" ndsversion="8.7">
<source>
<product asn1id="" build="20090313_120000"
instance="\IdMVAULT\system\services\idm\Driverset1 \Dom1-AD"
version="3.5.5">AD</product>
<contact>Novell, Inc.</contact>
</source>
<output>
<status event-id="0" level="error" type="driver-general">
<message>Error getting next page of search results</message>
<ldap-err ldap-rc="34" ldap-rc-name="LDAP_INVALID_DN_SYNTAX">
<client-err ldap-rc="34"
ldap-rc-name="LDAP_INVALID_DN_SYNTAX">Invalid DN Syntax</client-err>
<server-err>0000208F: LdapErr: DSID-0C090654, comment: Error
processing name, data 0, vece</server-err>
<server-err-ex win32-rc="8335"/>
</ldap-err>
</status>
</output>
</nds>
[10/28/10 11:28:20.138]OM1 :Remote Interface Driver: Received
document for subscriber channel
[10/28/10 11:28:20.138]OM1 :Remote Interface Driver: Waiting for
receive...
[10/28/10 11:28:20.140]OM1 ST: SubscriptionShim.execute()
returned:
[10/28/10 11:28:20.140]OM1 ST:
<nds dtdversion="1.1" ndsversion="8.7">
<source>
<product asn1id="" build="20090313_120000"
instance="\IdMVAULT\system\services\idm\Driverset1 \Dom1-AD"
version="3.5.5">AD</product>
<contact>Novell, Inc.</contact>
</source>
<output>
<status event-id="0" level="error" type="driver-general">
<message>Error getting next page of search results</message>
<ldap-err ldap-rc="34" ldap-rc-name="LDAP_INVALID_DN_SYNTAX">
<client-err ldap-rc="34"
ldap-rc-name="LDAP_INVALID_DN_SYNTAX">Invalid DN Syntax</client-err>
<server-err>0000208F: LdapErr: DSID-0C090654, comment: Error
processing name, data 0, vece</server-err>
<server-err-ex win32-rc="8335"/>
</ldap-err>
</status>
</output>
</nds>
[10/28/10 11:28:20.142]OM1 ST: Applying input
transformation policies.
[10/28/10 11:28:20.142]OM1 ST: Applying policy:
%+C%14Citp-InitEntitlementConfigurationResource%-C.
[10/28/10 11:28:20.142]OM1 ST: Applying to status #1.
[10/28/10 11:28:20.142]OM1 ST: Evaluating selection
criteria for rule 'Make sure we only run once and when we're ready'.
[10/28/10 11:28:20.139]OM1 ST: (if-local-variable
'objectClass' match ".+") = TRUE.
[10/28/10 11:28:20.139]OM1 ST: (if-local-variable
'entConfigInitialized' equal "true") = TRUE.
[10/28/10 11:28:20.139]OM1 ST: Rule selected.
[10/28/10 11:28:20.140]OM1 ST: Applying rule 'Make
sure we only run once and when we're ready'.
[10/28/10 11:28:20.144]OM1 ST: Action: do-break().
[10/28/10 11:28:20.144]OM1 ST: Policy returned:
[10/28/10 11:28:20.144]OM1 ST:
<nds dtdversion="1.1" ndsversion="8.7">
<source>
<product asn1id="" build="20090313_120000"
instance="\IdMVAULT\system\services\idm\Driverset1 \Dom1-AD"
version="3.5.5">AD</product>
<contact>Novell, Inc.</contact>
</source>
<output>
<status event-id="0" level="error" type="driver-general">
<message>Error getting next page of search results</message>
<ldap-err ldap-rc="34" ldap-rc-name="LDAP_INVALID_DN_SYNTAX">
<client-err ldap-rc="34"
ldap-rc-name="LDAP_INVALID_DN_SYNTAX">Invalid DN Syntax</client-err>
<server-err>0000208F: LdapErr: DSID-0C090654, comment: Error
processing name, data 0, vece</server-err>
<server-err-ex win32-rc="8335"/>
</ldap-err>
</status>
</output


--
Johnmad6
------------------------------------------------------------------------
Johnmad6's Profile: http://forums.novell.com/member.php?userid=77554
View this thread: http://forums.novell.com/showthread.php?t=424576