Active directory schema error

- April 24, 2015

dear all,

we have issue regarding active directory user registry. our application wants retrieve user registry active directory,

so after type domain name, username , password domain admin, apps add schema in ad, directly can respons active directory server.

below log configuration

< 3/17/2013 - 8:26:43 pm
<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<
<<<<<<<<

3/17/2013-8:27:03 pm: configuring access manager policy server....
c:\progra~2\tivoli\policy~1\sbin\ivmgrd_setup.exe -y no -m "********" -
r 7135 -l 1460 -t 7200 -d no -f no
openconffile: "c:\progra~2\tivoli\policy~1\etc\pd.conf"
getentry: c:\progra~2\tivoli\policy~1\etc\pd.conf pdrte user-reg-type
closeconffile: c:\progra~2\tivoli\policy~1\etc\pd.conf
openconffile: "c:\progra~2\tivoli\policy~1\etc\activedir.conf"
getentry: c:\progra~2\tivoli\policy~1\etc\activedir.conf uraf-registry
hostname
getentry: c:\progra~2\tivoli\policy~1\etc\activedir.conf uraf-registry
useencryption
getentry: c:\progra~2\tivoli\policy~1\etc\activedir.conf uraf-registry
domain
getentry: c:\progra~2\tivoli\policy~1\etc\activedir.conf uraf-registry
dnforpd
getentry: c:\progra~2\tivoli\policy~1\etc\activedir.conf uraf-registry
multi-domain
getentry: c:\progra~2\tivoli\policy~1\etc\activedir.conf uraf-registry
bind-id
getentry: c:\progra~2\tivoli\policy~1\etc\activedir.conf uraf-registry
bind-pwd
closeconffile: c:\progra~2\tivoli\policy~1\etc\activedir.conf
openconffile: "c:\progra~2\tivoli\policy~1\etc\pd.conf"
getentry: c:\progra~2\tivoli\policy~1\etc\pd.conf pdrte user-reg-type
closeconffile: c:\progra~2\tivoli\policy~1\etc\pd.conf
openconffile: "c:\progra~2\tivoli\policy~1\etc\pd.conf"
getentry: c:\progra~2\tivoli\policy~1\etc\pd.conf pdrte user-reg-type
closeconffile: c:\progra~2\tivoli\policy~1\etc\pd.conf
c:\progra~2\tivoli\policy~1\sbin\mgrsslcfg.exe -config -f no -t 7200 -l
1460 -d no
creating ssl certificate. might take several minutes.
the ssl configuration of tivoli access manager policy server
has completed successfully.

the policy server's signed ssl certificate base-64 encoded and
saved in text file "c:\progra~2\tivoli\policy~1\keytab\pdcacert.b64."

this file required configuration program on each machine
in secure domain.
c:\progra~2\tivoli\policy~1\sbin\bassslcfg.exe -config -f no -c "c:
\progra~2\tivoli\policy~1\keytab\pdcacert.b64" -p 7135 -h tameb1
the ssl configuration of access control runtime has completed
successfully.
tivoli access manager policy server domain name: default
tivoli access manager policy server host name: tameb1
tivoli access manager policy server listening port: 7135

2013-03-17-20:27:13.770-07:00i----- 0x16b48064 pid#2848 error rgy ad e:
\build\am611\src\uraf\ad\schema\adschema_update.cpp 550 0x00000ad0
hpdrg0100e operation in active directory registry for
adschema_update.exe: adschema_check_schema_rights failed return
error 8000500d.
adschema_update: result 1, retcode -2147463155
hpdbg0938e configuration failed.

3/17/2013-8:29:13 pm: hpdbg0938e configuration failed.
>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
>>>>>>>>
> 3/17/2013 - 8:29:15 pm
>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
>>>>>>>>

please advice,

thanks,

best regards,

achmad

hi log states:

adschema_update.exe: adschema_check_schema_rights failed return
error 8000500d.

the error code documented in this kbto go short think running user not have required privilegs edit ad schema. need member of 'schema admins' in forest root domain edit ad schema.

mcp/mcsa/mcts/mcitp

Windows Server > Group Policy

Search This Blog

Lrl

Active directory schema error

Comments

Post a Comment

Popular posts from this blog

Group Policy Event ID 1058 Error Code 1326 (The user name or password is incorrect)

Suspicious event log Event ID: 4905

DCOM received error "2147746132" from...