[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
Adding users to active directory
I have managed to get open ldap to connect to connect to my AD using
python-ldap, thanks for the help on that...
I can change passwords, delete and modify users with no problems, but adding
new users is turning out to be a bit trickier. When I attempt to add one, AD
returns the following:
0000209A: SvcErr: DSID-031A0929, problem 5003 (WILL_NOT_PERFORM), data 0, DSA
is unwilling to perform
Not very helpful as error messages go :)
I believe my problem is correctly creating the data for each attribute, eg (a
user I created through active directory):
dn: CN=getbusi,CN=Users,DC=testing,DC=com
accountExpires: 9223372036854775807
badPasswordTime: 0
badPwdCount: 0
codePage: 0
cn: getbusi
countryCode: 0
displayName: getbusi
givenName: getbusi
instanceType: 4
lastLogoff: 0
lastLogon: 0
logonCount: 0
distinguishedName: CN=getbusi,CN=Users,DC=testing,DC=com
objectCategory: CN=Person,CN=Schema,CN=Configuration,DC=testing,DC=com
objectClass: top
objectClass: person
objectClass: organizationalPerson
objectClass: user
objectGUID:: F+ocYTvtdUeLTBaaFl0jog==
objectSid:: AQUAAAAAAAUVAAAAilpBYCfH9W1DFwoyVAQAAA==
primaryGroupID: 513
pwdLastSet: 127245658627812500
name: getbusi
sAMAccountName: getbusi
sAMAccountType: 805306368
userAccountControl: 66048
userPrincipalName: getbusi@testing.com
uSNChanged: 2992
uSNCreated: 2988
whenChanged: 20040324013742.0Z
whenCreated: 20040324013742.0Z
Does anyone have any experiance with this? I don't know what attributes are
important and what I can safely ignore...
Thanks
Matt Smith