SMS_AD_SYSTEM_DISCOVERY_AGENT failed to bind to container
Hi!SMS_AD_SYSTEM_DISCOVERY_AGENT report about error as:SMS Active Directory System Discovery Agent failed to bind to container LDAP://DC=DOMAIN,DC=DDD. Error: The server does not support the requested critical extension.. Possible cause: The AD container specified earlier might be inalid now. The Domain Controller is inaccessible.Solution: Please verify that the AD container paths specified are valid. Confirm accessibility of the site server to the Domain Controller to be queried.But container exsists and sccm server have all rights on it. How i can resolve this error?
December 26th, 2009 1:05pm
Hi, Please help to give detail information: 1. What’s you SCCM system version, you can get the version number in SCCM console -> site database -> site management , the column version in the right pane. 2. What’s you SCCM system hierarchy? 3. What account is used to run the AD system discovery?
December 28th, 2009 1:11pm
How i can get this account? It's the server account. The only thing I can thing of is multiple forests or firewalls that would cause this unless someone messed with the permissions.John Marcum | http://www.TrueSec.com/en/Training.htm | http://myitforum.com/cs2/blogs/jmarcum
December 29th, 2009 1:40am
I am having the exact same problem with the exact same version and I am running a single domain with single forest.
December 29th, 2009 3:25pm
Single domain issues like this are probably a permissions problem. Be sure the machine account of the server has read access to the appropriate OU in AD.Scott Gill SCCM Consultant
December 29th, 2009 8:01pm
How would I set that up?
December 30th, 2009 3:34pm
I don't think that it's permissions related, because you would most likely see an "access denied" error, not the one you mentioned above.
December 30th, 2009 4:51pm
I just tried that now how can I test.
December 30th, 2009 4:56pm
Nope did not work I just added sccm server back to administrators group and I am trying to run discovery again.
December 30th, 2009 6:33pm
Still getting the error message the server is part of the administrators group and the server is part of the administrators group. Recreated the LDAP query and message persists. Any ideas?
December 30th, 2009 9:01pm
I guess in both way it should provide LDAP or GC query is correct.Please check LDAP path is correct ?? or not.Also it cant be permission issue ,no access denied error stated.
January 5th, 2010 7:17pm
Finally figured out what the problem is not sure how to fix. The discovery is looking for a database field in AD that does not exist. Forms on the internet say this is a common problem but I still cannot find a fix for it. Anyone have any ideas?
January 13th, 2010 3:34pm
a hotfix for this issue Which issue are you talking about exactly?
February 2nd, 2010 5:19pm
Any update on this? I am also receiving this error during AD System Discovery... Is there really a hotfix coming?
March 8th, 2010 12:42am
For those having the Discovery issues please check to see if this hotfix is the solution Article ID: 978757 - Last Review: March 3, 2010 - Revision: 1.0 Search paths are not discovered when the Active Directory System Discovery process or the Active Directory User Discovery process runs on a System Center Configuration Manager 2007 SP2 site serverhttp://support.microsoft.com/Default.aspx?kbid=978757http://www.sccm-tools.com http://sms-hints-tricks.blogspot.com
April 2nd, 2010 3:03pm
I have the exact same problem, but even after the hotfix I have no luck... any ideas?
May 12th, 2011 7:13pm
A snippet of a logfile or detailed error description would be more than helpful.Torsten Meringer | http://www.mssccmfaq.de
May 13th, 2011 3:02am