Look at the win32-rc error code, 8212 in this case.

Defined as:
ERROR_DS_OBJ_CLASS_VIOLATION

on this page:
http://msdn.microsoft.com/en-us/libr...8VS.85%29.aspx

On 5/23/2012 10:26 AM, plummb wrote:
>
> When trying to rename any associated group in my vault, AD driver throws
> the following error:
>
> <ldap-err ldap-rc="65" ldap-rc-name="LDAP_OBJECT_CLASS_VIOLATION">
> <client-err ldap-rc="65"
> ldap-rc-name="LDAP_OBJECT_CLASS_VIOLATION">Object Class
> Violation</client-err>
> <server-err>00002014: UpdErr: DSID-031A11DA, problem 6002
> (OBJ_CLASS_VIOLATION), data 0
> </server-err>
> <server-err-ex win32-rc="8212"/>
> </ldap-err>
>
> I have tried removing attribute: L from the filter, as described here:
> 'Support | LDAP_OBJECT_CLASS_VIOLATION when syncing L attribute on a
> Group' (http://www.novell.com/support/kb/doc.php?id=3440949) but it did
> not help - same error
>
> Ver: IDM 4.0.1
> SLES 11 SP1
> AD Driver: 3.5.14
> RL patch date: 7-28-2011 (4.0.1.1)
>
>