rankerich Absent Member.
Absent Member.
1058 views

First time set up for SSPR and getting error

So...just set up appliance today and ran the SSPR configuration wizard. Finished up the wizard and attempted to login (first time). Getting the following error after saving answers for challenge response questions:

An error occurred during the save of your response questions. Please contact your administrator. { 5045 ERROR_WRITING_RESPONSES (response storage only partially successful; attempts=2, successes=1, detail={"LDAP":"error saving responses via LDAP, error: 5045 ERROR_WRITING_RESPONSES (permission error writing user responses to ldap attribute 'pwmResponseSet', user does not appear to have correct permissions to save responses: javax.naming.NoPermissionException: [LDAP: error code 50 - NDS error: no access (-672)])","NMAS":"Success"}) }

Can't get back to the configuration to make any adjustments. What have I done wrong? Any ideas?
0 Likes
2 Replies
Knowledge Partner
Knowledge Partner

Re: First time set up for SSPR and getting error

rankerich wrote:

> 5045 ERROR_WRITING_RESPONSES


does this help?
https://www.netiq.com/support/kb/doc.php?id=7013461

--
Kevin Boyle - Knowledge Partner
If you find this post helpful and are logged into the web interface,
please show your appreciation and click on the star below this post.
Thank you.
_____
Kevin Boyle - Knowledge Partner - Calgary, Alberta, Canada
Who are the Knowledge Partners?
If you appreciate my comments, please click the Like button.
If I have resolved your issue, please click the Accept as Solution button.
0 Likes
Knowledge Partner
Knowledge Partner

Re: First time set up for SSPR and getting error

On 6/6/2018 3:24 PM, rankerich wrote:
>
> So...just set up appliance today and ran the SSPR configuration wizard.
> Finished up the wizard and attempted to login (first time). Getting the
> following error after saving answers for challenge response questions:
>
> An error occurred during the save of your response questions. Please
> contact your administrator. { 5045 ERROR_WRITING_RESPONSES (response
> storage only partially successful; attempts=2, successes=1,
> detail={"LDAP":"error saving responses via LDAP, error: 5045
> ERROR_WRITING_RESPONSES (permission error writing user responses to ldap
> attribute 'pwmResponseSet', user does not appear to have correct
> permissions to save responses: javax.naming.NoPermissionException:
> [LDAP: error code 50 - NDS error: no access (-672)])","NMAS":"Success"})
> }
>
> Can't get back to the configuration to make any adjustments. What have I
> done wrong? Any ideas?


In your eDir, you want to grant the [This] object permission to write to
pwmResponseSet at the container level.


The [This] permission means that it applies to every child object, that
they can only write to THIS object (themselves).

Also pwmOTP or somesuch and a couple of others I cannot think of offhand.

672 means no permission. Need permission.


0 Likes
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.