none
MIM Password Synchronisation RRS feed

  • Question

  • Hello, Everybody

    We deployed MIM 2016 and we're able to get a set of accounts from our source forest and create these accounts in all our target domains.

    On the Agents, we enabled password sync, however, it’s not working.

    One account has to be synchronize in two domains at the same time (Two agents). The account is created in all the domains but the password is synchronized only in the first domain (firt agent).

    If I deactivate the password synchronization on the first agent, the password is synchronized in the second.
    Is there an option I need to configure so that password is synchronize on the two agents at the same time?  

    Thanks for the feedback.
    Regards
    Anta

    Monday, February 3, 2020 12:22 PM

All replies

  • Hi,

    We sync passwords from one domain to two other domains. It should definitely work.

    Do you get any error message in the event log?

    Br,

    Leo


    Did my post help? Please use "Mark as answer" or "Propose as answer". Thank you!

    Tuesday, February 4, 2020 7:40 AM
  • Hello Leo,

    Thanks for your reply.

    No, we don't have any error message in the event log.

    On the DC, we have this message: The password notification has been delivered to all targets.

    On the MIM Server, I don't have any error message regarding Password Synchronization or connection to the other two domains.

    Regards.

    Anta.

    Tuesday, February 4, 2020 9:17 AM
  • Hello Everybody,

    A little update,

    On the MIM server, i have now a lot of error regarding the password synchronization.

    When I resert a password, I have the Id Event 6329.

    An unexpected error has occurred during a password set operation.
     "BAIL: MMS(2856): ..\dnutils.cpp(1341): 0x800700b7 (Impossible de créer un fichier déjà existant.)
    BAIL: MMS(2856): ..\dnutils.cpp(1341): 0x800700b7 (Impossible de créer un fichier déjà existant.)
    BAIL: MMS(2856): ..\dnutils.cpp(1341): 0x800700b7 (Impossible de créer un fichier déjà existant.)
    ERR_: MMS(2856): D:\bt\52550\sources\dev\Sync\ma\shared\inc\MAUtils.h(58): Failed getting registry value 'ADMADoNormalization', 0x2
    BAIL: MMS(2856): D:\bt\52550\sources\dev\Sync\ma\shared\inc\MAUtils.h(59): 0x80070002 (Le fichier spécifié est introuvable.): Win32 API failure: 2
    BAIL: MMS(2856): D:\bt\52550\sources\dev\Sync\ma\shared\inc\MAUtils.h(114): 0x80070002 (Le fichier spécifié est introuvable.)
    ERR_: MMS(2856): D:\bt\52550\sources\dev\Sync\ma\shared\inc\MAUtils.h(58): Failed getting registry value 'ADMARecursiveUserDelete', 0x2
    BAIL: MMS(2856): D:\bt\52550\sources\dev\Sync\ma\shared\inc\MAUtils.h(59): 0x80070002 (Le fichier spécifié est introuvable.): Win32 API failure: 2
    BAIL: MMS(2856): D:\bt\52550\sources\dev\Sync\ma\shared\inc\MAUtils.h(114): 0x80070002 (Le fichier spécifié est introuvable.)
    ERR_: MMS(2856): D:\bt\52550\sources\dev\Sync\ma\shared\inc\MAUtils.h(58): Failed getting registry value 'ADMARecursiveComputerDelete', 0x2
    BAIL: MMS(2856): D:\bt\52550\sources\dev\Sync\ma\shared\inc\MAUtils.h(59): 0x80070002 (Le fichier spécifié est introuvable.): Win32 API failure: 2
    BAIL: MMS(2856): D:\bt\52550\sources\dev\Sync\ma\shared\inc\MAUtils.h(114): 0x80070002 (Le fichier spécifié est introuvable.)
    ERR_: MMS(2856): admaexport.cpp(4207): The Kerberos change operation failed: 0xc000005e
    ERR_: MMS(2856): ..\ma.cpp(8531): ExportPasswordSet failed with 0x80004005
    Forefront Identity Manager 4.4.1302.0"

    Anybody have this same issue?

    Regards.

    Anta.

    Monday, February 10, 2020 1:39 PM
  • Hello EveryOne,
    Thank You Leo for your response, I read the two posts, recreated my agent, checked my firewall
    rules, everything is OK. But I still can't synchronize the password.
    The following ports are open between my two ADs : 389, 636, 464, 88.
    Do you have any other idea where the problem might come from?
    Thanks.
    Monday, March 23, 2020 4:28 PM