Active directory Test Connection Failed

Hi All ,
I’m receiving this error while trying to connect AD , Can anyone help me with it ?

Hi @sisvanthkumar ,

  1. Check your VA is up and connected.
  2. Check your AD is open.
  3. Check your forest name is correct. You can see this by Tools → Active Directory Users and Computers → under which you can see the forest name.
  4. Check the Domain Name → for example if the domain name is
    abc.search.com” → DC=abc,DC=search,DC=com
    abc.com” → DC= abc, DC=com
  5. Check the service Account, password and ip is correct. Service Account should be like “Domain Name/UserName” (Domain Name is nothing but the NET-BIOS name). For example “ABC\Administrator”
  6. Also, check your IQ service is running and configured correctly in AD. In IDN check it’s ip is correct.
  7. Finally, check the search DN is correct. check whether DN is as such like in AD.

Thanks!!

2 Likes

The error says “Enter valid domain credentials”, are you sure your service account is in good standing and you didn’t fat-fingered the password when passing the credentials for the domain?

Hi @eabedrapo1 , I have entered the right credentials of my service account

Do you have any other means to check if the service account is in good standing? (is the account locked or expired? is the password expired? has it been disabled or even deleted by someone else?)

Are you providing the username following SailPoint’s suggested format (domain\username)?

You may also need to check if your forest doesn’t have any replication issues. The password might have been set in some server and the server you’re connecting may not recognize it as valid due replication problems.

Finally, sometimes hidden special characters are introduced when copying and pasting from formatted text. You may always want to copy the credentials from where you got them and paste them in a notepad to ensure you’re introducing ASCII characters only. Then copy the credentials from notepad and paste them in SailPoint.

It might be other reasons why your service account is failing to connect, but the error you pasted at the beginning of the thread indicate the problem might be the credentials, hence my suggestions go in that direction.

Regards.

1 Like

As mentioned by @eabedrapo1 : Error Code 49 means issue with your username or password.

Hi Sisvanth Kumar,

The mentioned error is regarding the service account credentials. Either the password is expired or given wrong details.

2 Likes

Hi @GOKUL_ANANTH_M ,
Checked the steps mentioned by you and everything’s fine .

The error which is mentioned denotes there is some information missing or wrong which is given by you in service account username and password. Can you revisit it?

1 Like

Hello @sisvanthkumar,

LDAP error code 49 is credential errors (username / password on domain setting or on IQService configuration).

Hi @eabedrapo1 , thanks for your input
Is there any way to change our service account password ?

Thank you team for providing support !! I was able to rectify my issue and solve , it was due to incorrect service account username

2 Likes

This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.