This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

The object in Directory Services has a class missing

Hello,

In “Pending Events” we have a few events for users (who are not yet managed by NSM for AD) with the following actions (and action states):


  • Evaluating Add Member (Evaluating user policy)
  • Create User (Getting policy for the user)


The “last error” message is: “92 : The object in Directory Services has a class or attribute mismatch and is not valid.” Viewing the nsmengine-ad-(date).log file, I can see the following entries:

01 2014-04-02 08:55:20 3600 3 8003 1436 2908 cc::ds_ad::GetObjectListAsyncEx() - Called piDirSearch->GetNextRow(...), HRESULT = 80072030, Result = 15.
01 2014-04-02 08:55:20 3600 5 0008 1436 2908 PolicyTools::GetEffectivePolicies - Failed to get indirect group memberships for CN=<UserDetails>,DC=local. Result = 15.

A quick search for the error number indicates that the error (80072030) is that “there is no such object on the server”. All our DC’s are Global Catalog’s and I can confirm the users exist and are valid. Some of our groups do have a large number of members (up to 30,000).

Any idea what could be causing the issue and how to resolve it?

Thanks,

Jonathan
  • 0
    On 4/2/2014 5:06 AM, JonathanCox wrote:
    >
    > Hello,
    >
    > In �Pending Events� we have a few events for users (who are not yet
    > managed by NSM for AD) with the following actions (and action states):
    >
    >
    > - Evaluating Add Member (Evaluating user policy)
    > - Create User (Getting policy for the user)
    >
    >
    > The �last error� message is: �92 : The object in Directory Services has
    > a class or attribute mismatch and is not valid.� Viewing the
    > nsmengine-ad-(date).log file, I can see the following entries:
    >
    > 01 2014-04-02 08:55:20 3600 3 8003 1436 2908
    > cc::ds_ad::GetObjectListAsyncEx() - Called piDirSearch->GetNextRow(...),
    > HRESULT = 80072030, Result = 15.
    > 01 2014-04-02 08:55:20 3600 5 0008 1436 2908
    > PolicyTools::GetEffectivePolicies - Failed to get indirect group
    > memberships for CN=<UserDetails>,DC=local. Result = 15.
    >
    > A quick search for the error number indicates that the error (80072030)
    > is that �there is no such object on the server�. All our DC�s are Global
    > Catalog�s and I can confirm the users exist and are valid. Some of our
    > groups do have a large number of members (up to 30,000).
    >
    > Any idea what could be causing the issue and how to resolve it?
    >
    > Thanks,
    >
    > Jonathan
    >
    >

    Jonathan,

    Which version of NSM are you using? Specifically, what Engine build are
    you on? The easiest way to check this is in the Engine Status panel of
    the NSM Admin client.

    -- NFMS Support Team
  • 0 in reply to 
    Hi - It's engine version 3.1.1.46 (Aug 30 2013 12:30:20) - NSM 3.1 for AD. I believe, is the latest version available.
  • 0 in reply to 
    On 4/2/2014 11:26 AM, JonathanCox wrote:
    >
    > Hi - It's engine version 3.1.1.46 (Aug 30 2013 12:30:20) - NSM 3.1 for
    > AD. I believe, is the latest version available.
    >
    >

    Jonathan,

    Send us an email at storagemanager@novell.com -- we've got an updated
    Engine build we'd like you to try. Thanks.

    -- NFMS Support Team