Active Directory AFX test connector capability fails with 'Invalid DN Syntax' and 'Error processing name' errors in RSA Identity Governance & Lifecycle
2 years ago
Originally Published: 2016-07-11
Article Number
000064120
Applies To
RSA Product Set: Identity Governance & Lifecycle
RSA Version/Condition: All
Issue
When testing the Active Directory AFX connector capability Add Account to AD Group in RSA Identity Governance & Lifecycle, the test fails with the following error in the user interface (AFX > Connectors > {connector-name} > Test Connector Capabilities).
 
LDAPException: Invalid DN Syntax (34) Invalid DN Syntax
LDAPException: Server Message: 00000057: LdapErr: DSID-0C090BD9, comment: Error processing name, data 0, v1db1
LDAPException: Matched DN:
   
User-added image
 
Cause
The CN= prefix is missing from the Group attribute input parameter as shown below:

User-added image
 
Resolution
To resolve this issue, add the CN= prefix to the beginning of the Group attribute input parameter that is being passed to the AFX connector as shown below:

User-added image
Notes
See a similar issue documented in RSA Knowledge Base Article 000033517 -- Active Directory AFX test connector capability fails with 'Invalid DN Syntax' and 'Error in attribute conversion operation' errors in RSA Identity Governance & Lifecycle.

Related Articles

Trending Articles

Don't see what you're looking for?