Al
Fri Nov 12 20:00:15 CST 2004
Is this an interorg CA?
Could not import the entry 'cn=tjones,cn=Recipients,ou=Wilnet,o=A & B
company' into the directory server 'wilmailfe.domain.com' in the second
shows one domain and one ORG, while the other
dn: cn=tjones,cn=Recipients,ou=Wilnet,o=R & L Carriers shows a different
ORG.
Also, the rights needed are on the AD side of the join according to the
report (looks like anyway) 'wilmailfe.domain.com' is the directory server
it's working with. Can you confirm what this server is and why there are
two ORG's showing?
"jkegley" <jkegley@discussions.microsoft.com> wrote in message
news:EFD7B28D-8E56-46AC-BD98-BAD6E1BA4398@microsoft.com...
> Event Type: Error
> Event Source: MSADC
> Event Category: LDAP Operations
> Event ID: 8270
> Date: 11/12/2004
> Time: 8:27:26 AM
> User: N/A
> Computer: ADWIL02
> Description:
> LDAP returned the error [32] Insufficient Rights when importing the
> transaction
> dn: cn=tjones,cn=Recipients,ou=Wilnet,o=R & L Carriers
> changetype: Modify
> objectguid:8707507E8638D04FABBFB275D446BC85
> replication-signature:463FB32EFA36A742ABD742B2E9BC6CB9
> msexchadcglobalnames:forest:o=R & L Carriers00000000C0ECE93905C8C401
> : EX5:cn=tjones,cn=Recipients,ou=Wilnet,o=R & L
> Carriers:organizationalperson$pers...
> : NT5:8707507E8638D04FABBFB275D446BC8500000000E1570F5ABBC8C401
> : FOREST:D4436E5FE8BBB0418743136289F5E19900000000E1570F5ABBC8C401
> ReplicatedObjectVersion:8
> nt-security-descriptor:010004804000000050000000000000001400000002002C0001000000000024001A00000001050000...
> -
> (Connection Agreement 'Users: domain.com - Wilnet\A & B Company' #2368)
>
> For more information, click
http://www.microsoft.com/contentredirect.asp.
>
>
> Followed by
>
>
>
> Event Type: Error
> Event Source: MSADC
> Event Category: Replication
> Event ID: 8183
> Date: 11/12/2004
> Time: 8:27:26 AM
> User: N/A
> Computer: ADWIL02
> Description:
> Could not import the entry 'cn=tjones,cn=Recipients,ou=Wilnet,o=A & B
> company' into the directory server 'wilmailfe.domain.com' in the second
> attempt. (Connection Agreement 'Users: domain.com - Wilnet\A & B Company'
> #2368)
>
> For more information, click
http://www.microsoft.com/contentredirect.asp.
>
>
> Like I stated, the user account that the ADC is using to authenticate has
> admin on the site container, org , and config container. But it is not
> the
> same as the exchange service account. Do these need to be the same?
> Thanks.
>
>
>
> "Al Mulnick" wrote:
>
>> Tough to say what exactly the issue is. Can you post the exact error?
>> Usually that's just indicative of an error (did you mean 8270 vs. 8207?)
>> during the process. Could be permissions, duplicates, etc. The error
>> message gives better information.
>>
>> al
>>
>> "jkegley" <jkegley@discussions.microsoft.com> wrote in message
>> news:579907D3-0605-4085-A67E-F359AA52C633@microsoft.com...
>> >I am migrating from 55 to 2k3. I have set up the ADC. On the GC that
>> >the
>> > ADC is installed on I get 8183 & 8207's in the app log. I have
>> > verified
>> > that
>> > the account AC is using is admin on the 55 org, site, and config
>> > containers,
>> > as described in article 329047. Any other ideas? Thanks.
>>
>>
>>