AD Connector - Could not store split secrets to AD for user

Customer forum for LastPass Enterprise

Moderators: admin, azitnay, anatoly_LP, chantieLP, JoeSiegrist, robyn

AD Connector - Could not store split secrets to AD for user

Postby trentq » Tue Sep 18, 2018 2:17 am

I am seeing this message in my logs:
AD Connector - Could not store split secrets to AD for user {GUID}
Could not set attribute ({attributeName}} on object ({guid.toString()}: Access is Denied.

How can I fix this?

Thanks
trentq
 
Posts: 3
Joined: Tue Sep 18, 2018 2:13 am

Re: AD Connector - Could not store split secrets to AD for u

Postby scottwunschel » Tue Sep 18, 2018 10:43 pm

I had the same issue and switched the AD account in the LastPass AD Connector to a domain admin and the error went away and now I have content in my custom attribute for a test user. I haven't gone back yet to identify if there is a lower-privileged account that still works, but it may be worth trying on yours to see if it is an AD permission issue.
scottwunschel
 
Posts: 4
Joined: Mon Sep 17, 2018 9:25 pm

Re: AD Connector - Could not store split secrets to AD for u

Postby trentq » Tue Sep 25, 2018 2:38 am

Thanks, using a domain admin account fix that issue.

Cheers
trentq
 
Posts: 3
Joined: Tue Sep 18, 2018 2:13 am


Return to LastPass Enterprise

Who is online

Users browsing this forum: No registered users and 11 guests