When I add my domains manually, the Domain Controllers are not resolved. Why?
The status column in the domain settings says that the user do not have Admin Privilege?
1. When I start ADSelfService Plus, none of my domains are discovered. It says "No Domain Configuration available". Why?
ADSelfService Plus, upon starting, discovers the domains from the DNS Server associated with the machine running the product. If no domain details are available in the DNS Server, it shows this message.
2. When I add my domains manually, the Domain Controllers are not resolved. Why?
When the DNS associated with the machine running ADSelfService Plus do not contain the necessary information. You need to add the Domain Controllers manually.
3. When I add the Domain Controller, I get an error as "The Servers are not operational". What does it mean?
This means that either the specified Domain Controller is invalid or it could no be contacted at present due to network unavailability.
4. When I add the Domain Controller, I get an error as "Unable to get domain DNS / FLAT name". What does it mean?
This error could be due to any of the following reasons:
When the specified user name or the password is invalid.
Anonymous login (when no user name and password is provided)
When IP Address of the Domain Controller is specified instead of its name.
5. The status column in the domain settings says that the user do not have Admin Privilege?
This is a warning message to indicate that the specified user do not have administrator privileges i.e, the user is not a member of Domain Admins Group. Hence permissions applicable to Administrator may not be available to this user.
Error Code - 80070005 / Error Code - 5 : Error In Setting Attributes, Access is denied
I am not able to set the Terminal Services properties for the user?
No such user matched. Verify the LDAP attribute in search query
1. Error Code - 80070005 / Error Code - 5 : Error In Setting Attributes, Access is denied
Cause : User account do not have enough privilege over the object.
Solution :
Login to ADSelfService Plus with the "admin" credential.
Click on the "Domain Settings" found at the right top corner.
Click on the edit image to "Edit Domain Details".
Check the "Authentication" and provide the privileged "Domain User Name" and "Domain Password".
Save the Changes and continue with the operations.
2. While user password reset, I get the following error "Error in setting the Password. The network path not found - Error Code: 80070035"
While setting the password for the user if the target machine could not be contacted, this error is shown. This could happen when the DNS associated with the machine running ADSelfService Plus do not point to the Domain Controller where the user account is being created (possibly both are in different domains).
3. While user password reset, I get the following error "Error in setting the Password. There is a naming violation - Error Code : 80072037"
One possible reason for this error could be that the password contains some special characters that are not allowed.
4. While updating the user information, I get the following error "The server is unwilling to process the request - Error Code : 80072035"
One possible reasons for this error could be:
When modifying the SAM Account Name format for multiple users and when more than one user happen to have the same SAM Account Name.
5. While updating the user information, I get the following error " Error In Setting Terminal service Properties. The specified user does not exist - Error Code : 525"
One possible reason could be that the user or the system account as which the product is run do not have an account in the target domain. Terminal Service properties can only be set if the user account or the system account (applies when ADSelfService Plus is run as a service) that runs ADSelfService Plus has an account on the target domain.
6. I have updated the exchange attributes using ADSelfService Plus, but the properties are not updated in the Exchange Server yet.
ADSelfService Plus modifies the exchange properties in the Active Directory. The changes may not immediately reflect in the Exchange Server. It will get updated after some time.
7. I am not able to set the Terminal Services properties for the user?
One possible reason could be that the user or the system as which the product is run do not have an account in that domain.
Refer to here for starting ADSelfService Plus in User or System account.
8. When I modify an user, I get the following error " A device attached to the system is not functioning - Error Code : 8007001f "
The possible reasons for this error could be:
When modifying an user, if an unacceptable format is chosen for the naming attributes. For example, if the format chosen for the Logon Name is LastName.FirstName.Initials and if the user do not have any one of these attributes specified, this error will occur.
9. Email address for user not showing up or not set properly?
The possible reason could be:
Email may Not be set as per Recipient Policy. check whether all ldap attributes in recipient ploicy query are set to specific value.
Check in the user account properties whether you entered the attribute for email. Ex: xyz@company.com. The company should be entered to the users.
10. Error-The server is unwilling to process the request while resetting Password which not maches to password complexity
The possible reason could be:
You may not have specified or opt for any options in 'Password Complexity' while creating user account.
Ex: There will be options for password complexity like length of password, Characters that can be used or number of bad login attempts etc. You need to select any degree of complexity, ignoring so will throw above error.
The reason is, the Supplied credentials are invalid.
Reason: The referenced account is currently locked out and may not be logged on.
Reason: The password does not meet the password policy requirements. Check the minimum password length, password complexity and password history requirements.
14.No such user matched. Verify the LDAP attribute in search query
Reason: No Users in AD matches with the criteria provided by you.Try choosing the correct matching attributes by checking with the query provided in the "Match criteria for Users in AD",this is obtained by clicking on "Update in AD" button and expanding "Select Attributes" box.
When I specify the details and generate the report, it says "No Result available" or incomplete data
AD Reports shows an object that do not exist in the Active Directory?
1. When I specify the details and generate the report, it says "No Result available" or incomplete data
It could be because of any of the following reasons:
When ADSelfService Plus could not contact the Domain Controller as it is not operational or due to network unavailability.
In case of multiple Domain Controllers, when the data is not replicated in all the Domain Controllers.
The LastLogonTime that is used to determine the inactive users and computers is not replicated in all the Domain Controllers. Hence, you need to specify all the Domain Controllers in the Domain Settings to enable ADSelfService Plus to retrieve the data from all the Domain Controllers.
When the password policy is not set (i.e., Max Password Age is set to zero), the Password Expired Users report and Soon to Password Expiry users report will not show any data.
2. AD Reports shows an object that do not exist in the Active Directory?
This mismatch could occur when the data is not synchronized with the
Active Directory. The data synchronization with the Active Directory happens
everyday at 1.00 hrs. If
ADSelfService Plus is not running at that time, you can initiate the data
synchronization manually by clicking the icon of that
domain from the Domain
Settings.