on 08-05-2020 7:34 AM
While deleting the user from Active Directory using SAP IDM 8.0, we are getting below error -
ToDSADirect.deleteEntry(CN=Last\, First,OU=XX,DC=XX,DC=com) java.lang.Throwable: [LDAP: error code 66 - 00002015: UpdErr: DSID-031A12A5, problem 6003 (CANT_ON_NON_LEAF), data 0]On checking in LDAP, we found these accounts have sub-tree items.
As a solution, we tried updating the changeType in DeleteADSUser pass to "deletesubtree" but still issue persists.
Can anyone help us on this with a solution or maybe guide us to a KBA/note/SCN link which might be useful
Hello Nawanshu,
the reason behind are the assigned mobiles you can see below the user object in AD.
I have a nightly job running that reads all users and their mobiles, counter-checks the deactivation states and then removes the mobiles and the container they are in. After that the normal deletion job, which follows three months later, can successfully run.
I recommend doing it in a job as one user can have more than one mobile assigned. So it's easier to do the Source tab query of a batch job, then running a task in a loop until all mobiles and the container are removed.
Kind regards
Dominik
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
95 | |
11 | |
10 | |
9 | |
9 | |
7 | |
6 | |
5 | |
5 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.