[2014/11/17:17:46:08.986] Adprep was about to call the following LDAP API. ldap_modify_s(). The entry to modify is CN=DirectoryEmailReplication,CN=Certificate Templates,CN=Public Key Services,CN=Services,CN=Configuration,DC=DOMAIN,DC=LOCAL. [2014/11/17:17:46:08.987] LDAP API ldap_modify_ext_s() finished, return code is 0x32 [2014/11/17:17:46:08.990] Adprep was unable to modify the security descriptor on object CN=DirectoryEmailReplication,CN=Certificate Templates,CN=Public Key Services,CN=Services,CN=Configuration,DC=DOMAIN,DC=LOCAL. [Status/Consequence] ADPREP was unable to merge the existing security descriptor with the new access control entry (ACE). [2014/11/17:17:46:08.990] Adprep encountered an LDAP error. Error code: 0x32. Server extended error code: 0x5, Server error message: 00000005: SecErr: DSID-03151E07, problem 4003 (INSUFF_ACCESS_RIGHTS), data 0 DSID Info: DSID: 0x180e0a8f ldap error = 0x32 NT BUILD: 9600 NT BUILD: 16384 [2014/11/17:17:46:08.990] Adprep was unable to update forest information. [Status/Consequence] Adprep requires access to existing forest-wide information from the schema master in order to complete this operation.
Network and collaborate with thousands of CTOs, CISOs, and IT Pros rooting for you and your success.