This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Create Active Directory user with comma in CN

Go to solution
Waldy
Deputy Chef III
Deputy Chef III

3 weeks ago

I'm trying to use the Active Directory connector to create users.  It's really odd that you are expected to pass in the DN for a creation function.  I would expect that as output.  Aside from that, I can't create any new users, as the format for CN is LastName, FirstName.  I'm passing in the CN with the required backslash to escape the comma, but the action fails with an invalid name error.  The backslash is not shown in the output of the error.  I'm guessing this has been lost at some point.  Do I need to double escape it?

0 Kudos
1 ACCEPTED SOLUTION

Go to solution
Waldy
Deputy Chef III
Deputy Chef III

9 hours ago

I managed to get this working.  You need to add the Password Not Required flag to the User Account Control, then use the Set Password action to set a password and then an Update User action to remove the Password Not Required flag.  This of course is dependent on the Password Not Required flag being allowed in the security policy.

View solution in original post

0 Kudos
4 REPLIES 4

Go to solution
Waldy
Deputy Chef III
Deputy Chef III

3 weeks ago

I tried double backslash, but now I get the error: LDAP: error code 21 - 00000057: LdapErr: DSID-0C0913EC, comment: Error in attribute conversion operation, data 0, v4563]

0 Kudos

Go to solution
Waldy
Deputy Chef III
Deputy Chef III

3 weeks ago

The Workato documentation for the AD connector is woefully lacking.  For example, do I need to convert accountExpires to FileTime format or does the connector do that for me?  Do I need to set samAccountType to 0x30000 to signify User object, or does the connector do that already?

0 Kudos

Go to solution
Waldy
Deputy Chef III
Deputy Chef III

2 weeks ago

I've worked through the various issues and I'm now at the point where I am getting a WILL_NOT_PERFORM error returned from LDAP which I suspect is due to the fact the Workato connector Add User action does not expose the userPassword attribute.  So it seems that you cannot actually use the Add User action to create a user.  Somebody please prove me wrong!

0 Kudos

Go to solution
Waldy
Deputy Chef III
Deputy Chef III

9 hours ago

I managed to get this working.  You need to add the Password Not Required flag to the User Account Control, then use the Set Password action to set a password and then an Update User action to remove the Password Not Required flag.  This of course is dependent on the Password Not Required flag being allowed in the security policy.

0 Kudos
Copyright © 2026 Khoros, LLC