LDAP_INVALID_SYNTAX error when migrating users from eDir to AD
(Last modified: 04Apr2006)
This document (10100448) is provided subject to the disclaimer at the end of this document.
symptom
LDAP_INVALID_SYNTAX error when migrating users from eDir to AD
00000057: LdapErr: DSID-0C090A85, comment: Error in attribute conversion operation, data 0, vece
server-err-ex win32-rc="87"
fact
Nsure Identity Manager 2.0
Novell Active Directory Driver
cause
In the Output Transform Policy there is a rule called "Street Address: Convert LF to CR-LF". In some cases, it may be possible for streetAddress to be an Operation Attribute, but have no value. You cannot add a streetAdress attribute without a value, and so AD will return the error above. This can be seen with a trace level 3 on the engine side, but if it is another attribute a trace level 5 on the remote loader side (if there is a remote loader) would make it easier to spot the offending attribute.
note
This issue has only been seen with the AD driver from IDM 2. The AD driver in IDM 3 uses a different rule.
There are other attributes that can cause this same problem including any value supplied to AD that does not have the appropriate syntax for that attribute.
fix
In order to prevent this error from potentially occurring use the following rule. Include it in the Output Transform Policy immediately after the "Street Address: Convert LF to CR-LF" rule.:
<description>If curr-address variable is NULL</description>
<conditions>
<and>
<if-local-variable name="curr-address" op="equal"/>
</and>
</conditions>
<actions>
<do-strip-op-attr name="streetAddress"/>
<do-clear-dest-attr-value name="streetAddress"/>
</actions>
</rule>
document
| Document Title: | LDAP_INVALID_SYNTAX error when migrating users from eDir to AD |
| Document ID: | 10100448 |
| Solution ID: | NOVL105136 |
| Creation Date: | 10Feb2006 |
| Modified Date: | 04Apr2006 |
| Novell Product Class: | DirXML |
disclaimer
The Origin of this information may be internal or external to Novell. Novell makes all reasonable efforts to verify this information. However, the information provided in this document is for your information only. Novell makes no explicit or implied claims to the validity of this information.
Any trademarks referenced in this document are the property of their respective owners. Consult your product manuals for complete trademark information.