There is a process here in the environment where the intern became an employee.
And his employee identity gave an error when creating an account in AD, after manual action the creation occurred normally.
I would like to know what type of error this could be?
Yes from sailpoint you wonβt be able to create it until you remove the rollback flag from the AD configuration. You will also observe that if you uncheck the rollback flag it will create the AD account partially.
Can you confirm if you have any rules attached? Native rules are powershell scripts deployed on your tenant you can see code and check the log path.