Messages

Messages are printed to the info and debug files. Messages which cause an abort may have additional information in the debug file.

Error: ActiveDirectory AddUserToGroup cannot find <group> in <server>

A Dynamic Group specified in the Identity Source cannot be found in the ActiveDirectory. Either it is miss-spelt or needs to be created.

Error: Active Directory Exception of type 'AMX.Library+CustomException' was thrown.

The identity schema does not define <column > either distinguishedName, CN or both.

Error: ActiveDirectory Extract A referral was returned from the server.

for LDAP:// dc1.example.com/DC=corpz,DC=example,DC=com

Check the directories in <path> and manually create any missing ones.

.

Error: ActiveDirectory ExtractMembers circular recursion of <group1> in <group2>

The memberNested Staging Attribute ExtractMembers has found group1 is a member of group2 and group2 is already a member of group1.

Error: ActiveDirectory LoadAttribute MoveToNewParent failed Unknown error (0x80005000)

See more details in the debug file, this will show the parent. This can be caused by a blank distinguishedName in the identity source, distinguished

name must be created in the Identity source. For example use:

,distinguishedName;concat:%CN%,ou=accounts,dc=corp,dc=example,dc=com

Error: ActiveDirectory Load Create DN <DN> is not unique

The Distinguished Name <DN> found in the identity source and the SAMaccountName generated from the Template both must be unique. See the

Action file for the SAMaccount name and use the “unique” attribute modifier in the schema.

Error: ActiveDirectory Load Create The directory service cannot perform the requested operation on the RDN attribute of an object.

The account already exists in the Active Directory, perhaps in an unmanaged part of the OU structure, that is not extracted by identitySync.

Error: ActiveDirectory Load <name> Create Exception An invalid DN syntax has been specified.

See more details in the debug file. The DN is invalid, possible caused by a missing escape character “\” for a “,” in the CN

Error: ActiveDirectory Load <name> Create Exception The object already exists.

Error: ActiveDirectory Load Delete There is no such object on the server. For LDAP://<server>/<dn>

System.DirectoryServices.DirectoryServicesCOMException (0x80072030): There is no such object on the server.

See more details in the debug file. The OU defined in the identitySync property ActiveDirectoryDeletedContainer does not exist in the Active

Directory.

Error: ActiveDirectory Load <domain> Update of <name> Failed: A constraint violation occurred. For <DN>

Trying to update an Active Directory attribute that does not exist.

Error: ActiveDirectory Load <name> Create Exception There is no such object on the server

Error: ActiveDirectory Load <domain> Update <action> suppressed ambiguous user <user> update suppressed <attributes => values>

Active Directory search for <user> found more than one object. None of them were updated. See debug file (debug > 1) for details of the search

pattern and the reason for the ambiguity.

Error: ActiveDirectory Load Update of <account> Failed: Access is denied.

The account defined in the property ActiveDirectoryUser in identitySync.properties does not have the privileges to update the ActiveDirectory. An

update of X was not processed.

Error: AMXlib CheckColumn properties file contains <Metaverse Attribute name> and Schema <Schemafile> does not

Error: AMXlib Concats Column <attribute1> does not belong to table for attribute <attribute2> %<attribute1>%

Concat refers to attribute1 that is not in the Metaverse when transforming attribute2

Error: AMXProperties GetPasswd password file <password file> is locked to a properties file

The password file has a properties file lock but the properties file does not have a Lock = true property.

Error: AMXProperties GetPasswd properties file has been tampered with. It does not match <password file>

Reset the password in the first line of password file.

Error: AMXProperties GetPasswd failed on <passwordFile> Invalid length for a Base-64 char array.

Error: CSV Extract. Attribute name <attribute> not in header of <file>

File does not contain CSV header with column names. Case sensitive.

More information in debug file, check debug file (Debug level >= 2) CSV Extract using delim= number columns found = 1. This indicates a bad

delimiter in the properties file.

Error: CSV Extract Read of <file> init The process cannot access the file <file>' because it is being used by another process.

File <file> is open in another application, probably Excel.

Error: CSV Extract Read of <file> init Index was outside the bounds of the array.

Bad delim in properties file

join, select, etc. The property is appended to Select * from, so a property beginning with “from” would cause this error. Check the debug file for

Database Extract from Container: to see the SQL select statement that was used.

Error: Database Extract ORA-00904: <attribute>: invalid identifier

The Staging Attribute defined in the AMX Schema file does not exist in the Database Table referenced in the DatabaseIdentitySelectFrom property.

Error: Database Extract ORA-00905: missing keyword

Expected a keyword such as from, join. Check typos such as joim.

Error: Database Extract ORA-00942: table or view does not exist

Error: Database Extract ORA-01045: user <user> lacks CREATE SESSION privilege; logon denied

Users need at least Grant Create Session to <user> to logon.

Error: Database Extract ORA-12170: TNS:Connect timeout occurred

Cannot connect to host, check hostname.

Error: Database Extract ORA-12514: TNS:listener does not currently know of service requested in connect descriptor

Can be caused by an incorrect or undefined SID in DatabaseResource or DatabaseIdentityResource

Error: Database Extract ORA-12541: TNS:no listener

Can be caused by an incorrect port.

Error: Database Extract ORA-12569: TNS:packet checksum failure

Can be caused when the port is active but not an Oracle listener. Usually port 1521.

Error: Database Unknown column <staging attribute name> in 'field list'

Can be caused by the Database property SelectFrom either not being set, referencing the wrong table, or not joining additional tables. Check debug

file for database select statement and test it in dbVisualizer or similar.

Error: Excel Extract Exception Invalid index. (Exception from HRESULT: 0x8002000B (DISP_E_BADINDEX)) 0

ExcelWorksheet property defines a non-existent worksheet

The SSL certificate is signed by an unknown certificate authority.

In IIS Manager, locate the certificate in the servers certificates store, open it and in the Details tab, save it. This cannot be done in the Exchange

Management Server. Copy the saved certificate to the system running AMX and install it in the Local Machine’s trusted root certification authority.

Error: Exchange Extract Exception Connecting to remote server failed with the following error message: The WinRM client cannot process the request. The

authentication mechanism requested by the client is not supported by the server or unencrypted traffic is disabled in the service configuration. Verify the

unencrypted

Check the configuration of the winrm process, using winrm get winrm/config. Check negotiate is true. In ISS manager check the authentication of

the vSite Powershell. Basic and Windows Authentication must be enabled.

Error: Exchange Extract Exception Connecting to remote server failed with the following error message: The SSL connection cannot be established. Verify

 Move mailboxes, including arbitration mailboxes to new server.

 Use the new installation and uninstall original instance of Exchange.

Error: Exchange Extract Exception Processing data from remote server failed with the following error message:

<f:WSManFault xmlns:f="http://schemas.microsoft.com/wbem/wsman/1/wsmanfault" Code="2152992672" Machine="AMX2.corp.example.com">

<f:Message><f:ProviderFault provider="PowerShellplugin" path="%windir%\system32\pwrshplugin.dll"></f:ProviderFault></f:Message>

</f:WSManFault> For more information, see the about_Remote_Troubleshooting Help topic.

Check Event log on Exchange Server:

 RBAC authorization returns Access Denied for user. Add administrator account to Exchange Group “Organization Management”

Error: HomeShare SetDirPerms for <account> Invalid parameter

The account is not found in the ActiveDirectory.

Error: HomeShare WMIConnect to <resource> failed The RPC server is unavailable. (Exception from HRESULT: 0x800706BA)

The server <resource> does not exist or cannot be contacted. Server is defined in HomeShareResource property. Check DNS resolution for the

server.

Error: identityServer Method not found: '!!0[] System.Array.Empty()'. Inconsistent .NET Frameworks. System running identityServer will need upgrading.

Error: JSON Extract Authentication Data malformed <string>

The property JSONAuthenticationData may have quoted strings these must be comma separated – no spaces.

LDAP Studio http://directory.apache.org/studio/ this will give better diagnostics concerning certificates and protocols.

Try using ldap:// on port 389 for attribute LdapServer1. This is not always available, but if this works:

 The server’s certificate may not be trusted by the system running identitySync. Try running with the ldap property CertificateTrust = Yes. If this

resolves the problem it is a certificate issue, try:

o Export the certificate from Apache Directory Studio and install the certificate in the Trusted Root CA store.

o Hostname must match the certificate and be resolvable with dns. Use nslookup to check.

Error: LDAP Extract. The object does not exist. For <adapterInstance>

Can be caused by a bad AccountContainer property value referring to a non-existent container.

Error: LDAP Extract. The server does not support the control. The control is critical. For <adapterInstance>

The AdapterInsatance does not support PagedRead. Set the PageSize property to 0.

Error: LDAP Load Create Exception The server cannot handle directory requests.

Can be caused by:

 When modifying a DN with a move or delete, the server is configured to refuse to move entries. Default with Sun Directory Server, use

Oracle Service Control Centre to enable it.

Error: LDAP Load Create Exception The syntax is invalid.

Can be caused by an invalid objectClass defined in the property ObjectClasses

Error: LDAP LoadDNAttribute ModifyDNRequest failed. The object does not exist.

Can be a problem with OpenLDAP that can have multiple CN attributes. This will be extracted as a list. Check the Action file, locate the record for

The remote certificate is invalid according to the validation procedure.

The SMTP mail server certificate is invalid or SSL is not supported.

 try property SMTPssl = false

Error: Message SendMess Failed to send message to <email address>

Use SMTPaccount and SMTPpasswd to authenticate with the mail server. Or SMTPssl = true is required. Or using the administrator account.

Error: Message CreateMessage unbalanced % characters in Template

The debug file will contain the offending line from the template when logging level >=2

Error: Database Extract System.Data.OracleClient requires Oracle client software version 8.1.7 or greater.

Error: Homeshare Create undo cannot delete directory c:\<dir> Created <createdOn> Dates mismatch <today>

Create undo deletes the directory. This is a sanity check, the undo is more than a day later than the create. The delete is inhibited for safety

reasons.

Error: Remote Extract No connection could be made because the target machine actively refused it <ip>

identityServer is not running on the remote system <ip>

Error: Schema ReadSchema File <filename> attribute <attribute> has a bad modifier <attribute modifier>

Error: Schema ReadSchema join modifier already defined <attribute1> and <attribute2>

Both attribute1 and attribute2 have join modifier flag. There can only be one join attribute.

Error: Schema ReadSchema malformed line <Line>

<Line> may not be of the form <Staging Attribute>,[<Metaverse Attribute>][;Metaverse Attribute Modifier]

Error: Server Extract A connection attempt failed because the connected party did not properly respond after a period of time, or established connection

failed because connected host has failed to respond <ip address>:<port>

identityServer not running

Firewall blocked connection. Check Firewall logs.