IQService is throwing an error

Shalaka_Gawande · November 11, 2024, 12:29pm

Which IIQ version are you inquiring about?

IIQ 8.3

Please share any images or screenshots, if relevant.

Share all details about your problem, including any error messages you may have received.

When I am going to create an account in Active Directory application then it throwing an error as mention on the screenshot

Arun-Kumar · November 11, 2024, 12:44pm

Hi @Shalaka_Gawande,

Ensure that all required fields for user creation in Active Directory are specified in your Create provisioning policy.

Enable the IQService logs for more details.

j_place · November 11, 2024, 12:47pm

Hi @Shalaka_Gawande I suspect you are trying to enable an account without setting the password first.

Vinodcsod · November 11, 2024, 12:48pm

Hi @Shalaka_Gawande,

The password set on the account might be an issue. If the password does not meet the configured policy, Active Directory will reject the request.
Please check the password policy with your AD team. and update the password artifact according for enabling account.

Felix_Witt · November 11, 2024, 1:31pm

This is the most probable cause. However there are other problems that can cause the issue. @Shalaka_Gawande please check the log on the IQService host. There should be more details. Either spelled out or with an error code you can resolve to find the actual issue. Could be password, missing attributes, duplicated naming attributes etc.

sagar_kamalakar · November 11, 2024, 10:05pm

Please check Access request and what values you are sending to provisioning engine are correct.

j_place · November 12, 2024, 9:39am

Hi @Vinodcsod and @Shalaka_Gawande - The OP states that the issue is caused when enabling the account, not when setting the password, so lack of password is still the likely cause of that log entry. However, the password may have been rejected in a previous call (as you say, for policy violation), but we don’t have a log entry for that.

j_place · November 12, 2024, 9:53am

Hi @Felix_Witt AD doesn’t normally give any details about password issues as that would assist an attacker - hence the “unwilling to perform” message.

Felix_Witt · November 12, 2024, 10:16am

Yes it doesn’t give any more details, other that the password doesn’t match the complexity requirements. But unwilling to perform is also thrown if an attribute is missing or you’re trying to set a non unique value to a unique field. Therefor the answer is in the IQService log,

Shalaka_Gawande · November 12, 2024, 2:56pm

Right @j_place I have tried with the password & its working.

Thank You !

j_place · November 12, 2024, 4:21pm

Good news. If you could mark my earlier post as the solution that will help others in the future.

raheem110 · November 13, 2024, 11:24am

Hello @Shalaka_Gawande! Please check your password policy, as this error usually arises when the password fails to meet the necessary criteria.

Topic		Replies	Views
Active Directory Provisioning issue IIQ Discussion and Questions identityiq , provisioning	6	792	June 15, 2024
Active Directory Provisioning Error while creating a new account ISC Discussion and Questions identity-security-cloud , provisioning , iqservice	13	3596	February 28, 2024
Error Enabling Account in Active Directory: "The server is unwilling to process the request" (0000052D) IIQ Discussion and Questions identityiq , provisioning , iqservice	3	507	November 9, 2024
Getting error while provisioning account in Active Directory ISC Discussion and Questions identity-security-cloud , provisioning	2	3693	July 19, 2023
AD provisioning issue IIQ Discussion and Questions identityiq , provisioning	5	109	October 9, 2025

IQService is throwing an error

Which IIQ version are you inquiring about?

Please share any images or screenshots, if relevant.

Share all details about your problem, including any error messages you may have received.

Related topics