When the Access Fulfillment Express (AFX) Connector for Active Directory attempts to create or modify an account, the action fails and the following error is seen in the AFX log files:
The
$AFX_HOME/esb/logs/esb.AFX-MAIN.log has the following error:
2018-05-31 16:29:35.675 [INFO] org.mule.api.processor.LoggerMessageProcessor:193 - returning: -1 ->
LDAPException: Insufficient Access Rights (50) Insufficient Access Rights
LDAPException: Server Message: 00000005: SecErr: DSID-03152612,
problem 4003 (INSUFF_ACCESS_RIGHTS), data 0
LDAPException: Matched DN
The
$AFX_HOME/esb/logs/esb.AFX-CONN-{connector-name}.log (the connector log for the specific AFX connector that is failing) has the same error:
Root Exception stack trace:
LDAPException: Insufficient Access Rights (50) Insufficient Access Rights
LDAPException: Server Message: 00000005: SecErr: DSID-03152612,
problem 4003 (INSUFF_ACCESS_RIGHTS), data 0
LDAPException: Matched DN: