zelgadis6 Absent Member.
Absent Member.
2013 views

Identity Manager sync error status 9006

We recently encountered sync errors for our AD driver set in IDM, when checking password status all users have a sync error 9006

Subscriber status log as well has the following message outputted for many users

<status event-id="pwd-subscribe" level="error" type="driver-general">Could not set password via platform call. Err=2245 (password invalid)<operation-data>
<password-subscribe-status>
<association>6ba5f61706e78342b87209529cda5903</association>
</password-subscribe-status>
</operation-data>
<application>DirXML</application>
<module>Active Directory</module>
<object-dn>\NYM\nym\MTA-Users\CPhilip</object-dn>
<component>Subscriber</component>
</status>

I'd greatly like to get feed back on possible root causes as I don't have very much reference or experience with troubleshooting Identity Manager.
Labels (1)
0 Likes
4 Replies
ScorpionSting Absent Member.
Absent Member.

Re: Identity Manager sync error status 9006

You need to post this in the correct forum: https://forums.novell.com/forumdisplay.php/1311-IM-Engine-Drivers

Visit my Website for links to Cool Solution articles.
0 Likes
Highlighted
Knowledge Partner Knowledge Partner
Knowledge Partner

Re: Identity Manager sync error status 9006

Besides that, the error means that the password you tried to send to
microsoft active directory (MAD) is not one that it (MAD) will accept,
probably because you have complexity rules there which are rejecting the
password. Having mismatched password policies in the vault and an
application is a recipe for this kind of problem so check there first, or
else check with your MAD administrators for why the passwords sent were
invalid (assuming they know how to tell from their logs).


--
Good luck.

If you find this post helpful and are logged into the web interface,
show your appreciation and click on the star below.

If you want to send me a private message, please let me know in the
forum as I do not use the web interface often.
0 Likes
zelgadis6 Absent Member.
Absent Member.

Re: Identity Manager sync error status 9006

For better or worse, I'm actually the admin for both eDirectory and AD side of things. I read on a different forum that disabling the complexity rules would help things however I didn't see any change.
0 Likes
Knowledge Partner
Knowledge Partner

Re: Identity Manager sync error status 9006

Did your update (disabling the complexity rules) propagated to AD users?
0 Likes
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.