Password synchronisation failure - 1753

Hello,

Our AD server, on which the Remoteloader is running, cannot synchronize the password to the eDirectory.

While debugging, we discovered that there must be an issue with the pwfilter. The Remoteloader synchronizes all other data normally. However, password sync works from Novell to AD.

We have also found that no user has been written in the Windows registry. The permissions for the keys have been checked and are correct.

An interesting error is also visible in the Control Panel: In Identity Manager PassSync, it shows that the server, which is running the Remoteloader should be restarted. Of course, this was attempted, but the message remains the same.

We have already used the PassSync Troubleshooting Tool. Here is the evaluation (server names and the domain of the AD Servers were changed for publication in the log):

Check DC:

"Thu Jun 06 12:12:47 2024 : Starting Checks on All DCs .....

Thu Jun 06 12:12:53 2024: Logging as administrator user.

Thu Jun 06 12:12:53 2024 : The List of all Domain Controllers -

  1. AD-01
  2. AD-02

Thu Jun 06 12:12:53 2024 : Checking the Domain Controller AD-01 ....

Running Basic Diagnostic Checks.

Password filter files installed on this DC are C:\Windows\System32\PWFILTER.DLL and C:\Windows\System32\PSEVENT.DLL

The value of 'Host Names' '[AD-02]' in DC[AD-01] is the same as the name of the driver machine [AD-02]

Opened key [SOFTWARE\NOVELL\PWFILTER\DATA].

No more items to process currently . Number of entries processed is 2

Running RPC Checks.

Checking whether this tool can reach the filter through RPC This tool can reach the filter through RPC

Checking if the filter can connect to the driver Error in connecting to the driver - 1753

Thu Jun 06 12:12:53 2024 : Checking the Domain Controller AD-02 ....

Running Basic Diagnostic Checks.

Password filter files installed on this DC are C:\Windows\System32\PWFILTER.DLL and C:\Windows\System32\PSEVENT.DLL

The value of 'Host Names' '[AD-02]' in DC[AD-02] is the same as the name of the driver machine [AD-02]

Opened key [SOFTWARE\NOVELL\PWFILTER\DATA].

No more items to process currently . Number of entries processed is 2

Running RPC Checks.

Checking whether this tool can reach the filter through RPC This tool can reach the filter through RPC

Checking if the filter can connect to the driver Error in connecting to the driver - 1753

Thu Jun 06 12:12:54 2024 : Tests on all DCs are done

Press any key to close this trace ... "

Check Driver Machine:

"Thu Jun 06 12:10:55 2024 : Starting Checks on Driver Machine .....

Thu Jun 06 12:11:16 2024: Logging as administrator user.

Thu Jun 06 12:11:16 2024 : The List of all Domain Controllers -

  1. AD-01
  2. AD-02

Thu Jun 06 12:11:16 2024 : RPC Service is running Thu Jun 06 12:11:16 2024 : Full DNS name of the driver machine is AD-02.our-domain

Thu Jun 06 12:11:17 2024 : The version of the Operating System is : Microsoft (build 9200) Thu Jun 06 12:11:17 2024 : An AD driver instance is found configured on Remote Loader Thu Jun 06 12:11:17 2024 : AD Driver which is configured with Connection port 8090 and Command port 8000 is running

Thu Jun 06 12:11:17 2024 : List of local files related to Driver are : C:\NetIQ\IDM\RemoteLoader\64bit\ADDriver.dll C:\NetIQ\IDM\RemoteLoader\64bit\AD-Config.txt C:\NetIQ\IDM\RemoteLoader\64bit\AD-Trace.log Thu Jun 06 12:11:17 2024 : Driver version is "4.1.2.0">AD</product> and Build ID is oduct> Thu Jun 06 12:11:17 2024 : The 'Driver Machine' value in the registry key[SOFTWARE\NOVELL\PASSSYNC] is : 1.

Thu Jun 06 12:11:17 2024 : The 'Domains' value in registry key[SOFTWARE\NOVELL\PASSSYNC\DATA] is our-domain

Thu Jun 06 12:11:17 2024 : Number of subkeys(passwords cached) under the key[SOFTWARE\NOVELL\PASSSYNC\DATA\our-domain]is 0

Thu Jun 06 12:11:17 2024 : Tests on this driver machine are done

Press any key to close this trace ... "