Hi,
I've written script using vb.net that will read objects from AD, and
sync them with my ADAM instance. I'm using the polling mechanism and
pointing always to the same DC, by checking usncreated against
hightestUSN on that DC I will add user/group/wks objects.
This is working fine, however I run into issue with creation some
users (all users are created as class userproxy)
I get following error message:
"The server is unwilling to process the request. (Exception from
HRESULT: 0x80072035)"
If I create the same user as class "user" it works. I've tried to
remove all additional attributes and only have dn, ObjectSID still get
same error.
The error occurs when I'm trying to do "commit.changes"
snippet from code:
Dim dom As New DirectoryEntry("LDAP://" & strADAM,
"cn=3Desdsubman,dc=3Dxx,dc=3Dcom", "xxxxxxxx", AuthenticationTypes.None)
Dim user As DirectoryEntry =3D dom.Children.Add("CN=3D" &
strUserNameCN, "userproxy")
user.Properties("objectSID").Add(GetUserSID(userDN))
'user.Properties("employeeNumber").Value =3D
strEmployeeID.ToString
'user.Properties("displayName").Value =3D
strDisplayName.ToString
'user.Properties("co").Value =3D strCountry.ToString
'user.Properties("physicalDeliveryOfficeName").Value =3D
strOffice.ToString
'user.Properties("telephoneNumber").Value =3D
strTelephone.ToString
' Commit the new user to the directory.
user.CommitChanges() =84=BB When doing
this
call the error occurs.
I've managed to create around 100,000 user objects, 100+ groups and
30,000 workstation objects. The error seems to occur for 10-20 users
(always the same users). If I compare these users against other users
I cannot see any differences.
Any ideas suggestions are appreciated
|
