Problem
Cannot synchronize Enterprise Vault Ev) Discovery Acceleratopr (DA) Custodian Manager with Active Directory.
Error Message
Message in the Synchronization Account table in Custodian Manager (see figure 1 below):
Warning: Account does not have Read Property and List Content permissions on the Deleted Objects container in Active Directory. Without these permissions, it is not possible to deactivate custodians and custodian groups whose Active Directory details have been moved to the Deleted Objects container.
figure 1
Event ID 561 in the Enterprise Vault Event Logs on the Accelerator server (see figure 2 below):
Account information for the domain ... doesn't have sufficient permission to access Deleted Objects.
V-437-561
figure 2
Cause
The account being used to synchronize with Active Directory does not have the proper permissions assigned.
Solution
The DA Installation Guide lists the specific steps required to add the necessary permissions as listed in the error under the section titled Assigning the required Active Directory permissions to the Custodian Manager synchronization account. Please see the DA Installation Guide as shipped with the product. Alternately, see the Enterprise Vault Product Documentation article in Related Articles below, select the article for your product version, select Discovery Accelerator, finally select the Installation Guide.
Related Knowledge Base Articles
References
Was this content helpful?
Translated Content
Please note that this document is a translation from English, and may have been machine-translated. It is possible that updates have been made to the original version after this document was translated and published. Veritas does not guarantee the accuracy regarding the completeness of the translation. You may also refer to the English Version of this knowledge base article for up-to-date information.