Sub-Error Codes for LDAP Error 49

Novell Cool Solutions: Tip
By Geoffrey Carman

Reader Rating

Digg This - Slashdot This

Posted: 24 Jan 2007

Problem

When using the Active Directory Driver with Novell Identity Manager, you may sometimes see an LDAP error 49 in your DSTrace. This means the account credentails could not log in correctly.

Solution

Here are the error codes you might see along with error 49, and their definitions:

525 - user not found
52e - invalid credentials
530 - not permitted to logon at this time
532 - password expired
533 - account disabled
701 - account expired
773 - user must reset password

It's useful to know what to do next to resolve the problem. For a 525 error, you probably have the Bind DN wrong. Remember that in AD, the default Users container on a fresh install is an odd object class, whose naming attribute is actually cn=Users(,dc=acme,dc=com) instead of what you might be expecting (such as ou=Users,dc=acme,dc=com).

If you see a 52e, it means you sent the wrong password. And so on and so forth.

You will often see a "sub-error" code that may be quite informative.

Like what you see?
Sign up for our weekly newsletter.

Want to contribute?
It could earn you a nano! Learn more.

Like Wikis?
Join the Cool Solutions Wiki.

Interested?
Request a sales call

Novell Cool Solutions (corporate web communities) are produced by WebWise Solutions. www.webwiseone.com

Sub-Error Codes for LDAP Error 49

Novell Cool Solutions: TipBy Geoffrey Carman

Problem

Solution

Novell Cool Solutions: Tip
By Geoffrey Carman