LDAP: error code 50 - The entry uid=test@info.com,ou=People,o=Drive,dc=company,dc=com cannot be added due to insufficient access rights

Question

I am trying to add account to OpenDS running of windows. I am using spring, opends2.2.1, hibernate and Jboss 5.1 When I tried to add the user, I get the following errors.

<

Answer 1

You need to give the password-reset privilege to useradmin (or to the user you try to change password with):

See: https://backstage.forgerock.com/#!/docs/opendj/3/admin-guide#about-privileges

"For example, in order to reset user's passwords, an administrator needs both the password-reset privilege and also access control to write userPassword values on the user entries."

Answer 2

1. Please verify that the LDAP directory was configured with the proper permissions as in Connecting to an LDAP Directory.

2. This error is a permissions configuration issue on the LDAP side

3. Your LDAP administrator will need to grant the LDAP bind user the permissions required to edit attributes.Exactly how this is set will vary depending on what type of LDAP server you are using.

4. LDAP users, groups and memberships are retrieved from your directory server. When you modify a user, group or membership via the application administration screens, the changes will be applied directly to your LDAP directory server. Please ensure that the LDAP user specified for the application has modification permissions on your LDAP directory server.

I hope my answer is useful in your case. Because as per the logs it says you are facing permission issue while modifying the LDAP entry.