I am getting error while bulk account provisioning for active directory application , few accounts are getting created but few are not, please refer to the image below for the error for those the account are failed creating.
In create provisioning policy for the distinguished name I am using the generator as - CN=$(firstname).$(lastname)$(uniqueCounter),OU=$(organization),OU=India, DC=Acme,DC=org
If i do process identity for the same single identity then their is no issue with the account creation.
I also tried increasing the connection timeout values in source using api. Also checked there are no duplicate accounts exist in AD. Also made this attributes like distinguishedName, upn and mail attribute as indexed in AD.
Can you confirm what your Source Account Schema Account ID is set to? is Account ID = distinguishedName? Since the error references UniqueAccountIdValidator[nativeIdentity=CN=…], it would help to know which attribute ISC treats as the Account ID during create.
How many are in the “bulk” request? Could be an active directory issue if you are using up all the ports on the server. Also check to make sure you have the correct DCs in the list in your config. They don’t always tell the Identity Team when a DC gets decommissioned
