cancel
Showing results for 
Search instead for 
Did you mean: 

"Could not create user account" error when creating a User in LDAP

former_member1173626
Participant
0 Kudos

Hi all,

I finally got my EP6 SP15 connected to my ADAM LDAP instance and when I create a new user, the user <b>does</b> get created in the LDAP (when I browse the LDAP, it certainly is there).

However, I get the above message about the account not being able to be created. I figure that I must have an attribute mapping issue of the sort in my xml file? I've tried many options to fix it, but I still can't get past this error.

This is what I get in the log:

com.sap.security.api.PrincipalNotAccessibleException: User account "UACC.CORP_LDAP.mbaldwin" is not accessible because the logonid is not available.

at com.sap.security.core.imp.AbstractUserAccount.getLogonUid(AbstractUserAccount.java:498)

at com.sap.security.core.imp.UserAccountWrapper.getLogonUid(UserAccountWrapper.java:62)

at com.sap.security.core.imp.UserFactory.deleteUser(UserFactory.java:347)

The same error occurs when I attempt to search for users from within EP: It will return the first few which are in the database only (i.e., I had some test user ids defined in the database before I attempted to connect the EP to the LDAP) and as soon as it hits one that is in the LDAP, the iView crashes with the above error.

Now that I'm thinking about it, is it okay to have my "old" (pre-LDAP) user IDs still in the database only? Is that problematic? (They were just test ids, so I don't need them in my LDAP.)

Well, if you have any ideas as to what I could do next, please let me know. I would greatly appreciate it.

Thanks,

Mike

Accepted Solutions (0)

Answers (1)

Answers (1)

Former Member
0 Kudos

Hi,

LDAP can be configured as READ ONLY or NON READ ONLY.

Please check if you have taken 'option 1' in the reference provided.

Refer:

http://help.sap.com/saphelp_nw04/helpdata/en/48/d1d13f7fb44c21e10000000a1550b0/content.htm

Hope that helps.

Regards,

S.Divakar

former_member1173626
Participant
0 Kudos

Hi,

No, I did not choose the read only option.

Again, the user <b>does</b> get created in the LDAP; the entry <b>is</b> physically in it, but I get an error about the account and I can't search on it.

Thanks,

Mike