Jeremy Stein - Brain

« »

LDAP: error code 53 – 00002077: SvcErr: DSID-031907B4, problem 5003 (WILL_NOT_PERFORM), data 0

I got that message because I tried to create an Active Directory user object with a password. The password can only be set on an existing user. You have to create the inital user with the password-not-required flag (0x0020). A normal account with that flag would have userAccountControl set to 0x0220. Then you can go back and set the password (and update the userAccountControl).


I also got that message when I tried to set primaryGroupID or sAMAccountType. It seems to automatically set them to the values I wanted (513 and 0x30000000), but won’t let me set them explicitly.


I also got that message when I tried to turn off the PASSWD_NOTREQD flag (0x0020).


I also go that message before I figured out how to properly set the Active Directory password through Directory Integrator.

April 20, 2005 No Comments.

No Comments

Be the first to comment!

Leave a Reply

Your email address will not be published. Required fields are marked *

Why ask?

« »