locked
AD to ADAM Synchronization RRS feed

  • Question

  •  

    Hello

    Im using adamsync to synchronize AD users to ADAM, and in most of the caces it go as planed.... but in cases where the system admin has moved user from one AD group to another i get an error saying that there is allready a user in ADAM with the same userPrincipalName(this is the same user as the one i want to synchronize but in ADAM he is in the group he use to be in before the admin moved him)

    I have read blog written by Eric Fleischman https://blogs.technet.com/efleis/archive/2006/10/28/change-visibility-in-the-directory-or-lack-there-of-aka-what-s-the-point-of-aging.aspx

    Now im thinking....
    1. Is my problem that the user that runs the synchronization(adamsync.exe) doesn't has access to see information about deleted/moved users? If yes how do i set this permissions?
    2. Or is the problem something else... And what could it be?

    Please help me out, this is a very annoying error because i have to go and delete all moved users from ADAM for the sync to go through.....

    Extra info:

    I have talked to the domain admin and he ensures me that he have set the correct rights for my sync user(even linked him the knowledge page http://support.microsoft.com/?id=892806 ).

     

    The log says:
    Processing Entry: Page 126, Frame 1, Entry 10, Count 1, USN 0
    Processing source entry <guid=0ca02449686ef440ad0a7e31fe516537>
    Processing in-scope entry 0ca02449686ef440ad0a7e31fe516537.
    Adding target object CN=N1SCAH,OU=Familiegruppen Syd›st,OU=B›rne- og Familieomr†de Syd›st,OU=B›rne- og Familieafdelingen,OU=R†dmand og Direkt›r Familie- og Besk‘ftigelsesforv,OU=Familie- og Besk‘ftigelsesforvaltningen,OU=Aalborg Kommune,dc=enet,dc=local.
    Adding attributes: sourceobjectguid, l, instanceType, displayName, company, streetAddress, objectSid, userPrincipalName, mail, lastagedchange, objectclass,
    Ldap error occured. ldap_add_sW: Attribute Or Value Exists.
    Extended Info: 0000217B: AtrErr: DSID-03050758, #1:
     0: 0000217B: DSID-03050758, problem 1006 (ATT_OR_VALUE_EXISTS), data 0, Att 90290 (userPrincipalName)
    .
    Ldap error occured. ldap_add_sW: Attribute Or Value Exists.
    Extended Info: 0000217B: AtrErr: DSID-03050758, #1:
     0: 0000217B: DSID-03050758, problem 1006 (ATT_OR_VALUE_EXISTS), data 0, Att 90290 (userPrincipalName)
    .
    Saving Configuration File on DC=eNET,DC=local
    Saved configuration file.


    Yours,
    MW

    Friday, September 26, 2008 9:09 AM