on Jul 28, 2016Article Content
| Article Number | 000033519 |
| Applies To | RSA Product Set: RSA Via Lifecycle & Governance (RSA Via L&G) |
| Issue | When testing AFX connector capability "Add Account to AD Group" in RSA Via L&G, the test fails with the following error:org.mule.api.transformer.TransformerMessagingException: Search for attributes for  |
| Cause | The original input parameter passed as the Group attribute does not contain 'CN=' at the beginning of the input string. As a result, the "Group DN Suffix" defined in the connector definition is appended to the end of the search string and thus the search string is no longer valid. Note the search string returned in the error message: CN=ATgroup1\,OU=AT\,OU=vcloud Users\,DC=2k8r2-vcloud\,DC=local,OU=AU,OU=vcloud Users,DC=2k8r2-vcloud,DC=local The input parameter entered to test the connector capability was: ATgroup1\,OU=AT\,OU=vcloud Users\,DC=2k8r2-vcloud\,DC=local The Group DN suffix defined for the connector has been appended to the end of the search string. The Group DN suffix is defined under "Distinguished Name" under the connector settings: OU=AU,OU=vcloud Users,DC=2k8r2-vcloud,DC=local  |
| Resolution | To resolve this issue add CN= to the beginning the group attribute that is being passed to the AFX connector, as in the example here: |
| Notes | Similar to KB 000033517 (Invalid DN Syntax error in Attribute Conversion when testing AFX connector capability 'Add Account to AD Group' in RSA Via Lifecycle and Governance) |