SecurID® Knowledge Base
Find answers to your questions and identify resolutions for known issues with knowledge base articles written by SecurID experts.
Article Number
000035202
Applies To
RSA Product Set: SecurID
RSA Product/Service Type: Authentication Manager
RSA Version/Condition: 8.2.1
RSA Product/Service Type: Authentication Manager
RSA Version/Condition: 8.2.1
Issue
When trying to create a user authentication report that would display the Description field from Active Directory, although the attribute is configured correctly and exists in AD, when the attribute is mapped as an identity attribute, the following error displays:
Image description
Cannot map attribute description as it does not exist in the physical directory. Choose a valid attribute
Image descriptionCause
This behavior of the Description attribute is for backward compatibility with earlier operating systems because the attribute existed in the SAM APIs before AD existed. See the Microsoft article on the Description attribute for more information.
Workaround
As a workaround:
Image description
- Launch the Operations Console.
- Select Deployment Configuration > Identity Source > Manage Existing.
- Click on the identity source for which you want to map the attribute and from the context arrow select Edit.
- Click on the Map tab.
- Disable the option to Validate identity attribute definition mappings against directory schema.
- Click Save when done.
Image descriptionIn this article
