Register Sign in Need help? FAQ SailPoint directory
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Normalization Troubleshooting ‘ERROR: Could Not Find The Following SIDS’

Normalization Troubleshooting ‘ERROR: Could Not Find The Following SIDS’

Normalization Troubleshooting ‘ERROR: Could Not Find The Following SIDS’

 

Description: This article outlines troubleshooting errors pertaining to LDAP queries, specifically around the error 'could not find the following sids'.

Steps:

  1. Navigate to the server hosting the Permission Collection Engine associated application of the failing folder

    1. To find the Engine:
      1. Login to the Admin Client
      2. Find the application from the Business Resource Tree > right-click > Edit
      3. Click Configuration from the top menu bar
      4. Note the name of the Central Permission Collection Service
      5. Click Cancel > Yes
      6. Click Health Center under the Navigation menu
      7. Click Permission Collection tab
      8. Click on the name of the Central Permission Collection Service
      9. The server will be listed across from Server Name
  1. Install Active Directory Lightweight Directory Service (If you already have this role installed, skip to next step)
    1. Run Server Manager
    2. Click Manage > Add Roles and Features
    3. Navigate to the Server Roles (Next 3x)
    4. Select ‘Active Directory Lightweight Directory Service’ and Install (next 3x -> Install)
      1.     barbara_hodgkin_0-1621289126335.png

         

    5. Once Installation is complete, click close
  2. Open your command prompt and run ldp.exe
    1. This should open a Ldp window
    2. barbara_hodgkin_1-1621289126340.png

       

  3. Connect domain and user
    1. Click Connection > Connect…
    2. Enter the DC’s server name or domain name into Server Name, adjust port as needed > OK
    3. Click Connection > Bind…
    4. Select Bind with Credentials
    5. Enter the FAM Service Account configured for the application > OK
      1.      If the FAM Service Account is the same user logged in, you can select ‘Bind as currently logged on user’ > OK
    6. barbara_hodgkin_2-1621289126345.png

       

    7. Now you are ready to search of the SID
  4. Search for desired SID
    1. Click Browse > Search
    2. In the Filter selection:
      1.      Select desired Base DN
      2.      For Filter enter (objectSid={{enter your side here}} )
        1. **NOTE** make sure there are NO spaces between objectSid=SIDnumber, if there are you will not see correct results returned
      3. Select ‘Subtree’
      4.     barbara_hodgkin_3-1621289126346.png
      5. Click Run
  1. Results should display detailing information to help troubleshoot why the sid is unable to be found
    1. This example displays a working sid
    2. barbara_hodgkin_4-1621289126348.png

       

0 Kudos
Version history
Revision #:
2 of 2
Last update:
‎May 17, 2021 06:12 PM
Updated by:
SailPoint Employee
 
View Article History
Contributors