Bug 9621 - wrong LDAP error when trying to create extisting DN
Summary: wrong LDAP error when trying to create extisting DN
Status: NEW
Alias: None
Product: Samba 4.1 and newer
Classification: Unclassified
Component: AD: LDB/DSDB/SAMDB (show other bugs)
Version: 4.12.2
Hardware: All All
: P5 normal (vote)
Target Milestone: ---
Assignee: Jo Sutton
QA Contact: Samba QA Contact
Depends on:
Reported: 2013-01-31 08:31 UTC by leyder.murillo
Modified: 2021-03-19 00:04 UTC (History)
2 users (show)

See Also:

AD Error Screenshot (237.40 KB, image/jpeg)
2013-01-31 08:31 UTC, leyder.murillo
no flags Details

Note You need to log in before you can comment on or make changes to this bug.
Description leyder.murillo 2013-01-31 08:31:16 UTC
Created attachment 8523 [details]
AD Error Screenshot

Centos 6.3 backend (selinux disabled) Samba 4.0.2 - Upon username creation using AD tools on Windows with similar names, but different usernames, for example if two users share the same name such as John Doe and another user is also John Doe and create usernames: jdoe & jdoe1 respectively AD will state that "Windows cannot create the object (User's Name) because: Not enough storage is available to complete this operation." Although it does work when the names are not the same for example if the user's real name is James or Jane Doe and creating jdoe[x] (x = some number) it works.

My creation setup

John Doe = jdoe
James Doe = jdoe1
Jane Doe = jdoe2

### Trying to Create ###

(2nd person sharing same name) Jane Doe = jdoe3
(2nd person sharing same name) John Doe = jdoe4
(2nd person sharing same name) James Doe = jdoe5

If creating via command line - samba-tools it creates the usernames, although when trying to sign in to the domain in a Windows Client it gives error that it cannot find the user's roaming profile (even if one mandatory profile is the universal profile) and that the username/password is incorrect yet signs on with a "temporary profile."
Comment 1 Björn Jacke 2020-05-04 10:42:30 UTC
creating a new user with an already existing DN with ldbedit

on Samba 4.12:

failed to modify CN=Angela Almond,OU=officers,DC=azdom,DC=private - LDAP error 53 LDAP_UNWILLING_TO_PERFORM -  <00002035: samldb: objectSid must not be specified!> <>

on w2k16:

failed to modify CN=John Doe,CN=Users,DC=wdom2,DC=site - LDAP error 53 LDAP_UNWILLING_TO_PERFORM -  <0000209A: SvcErr: DSID-031A107A, problem 5003 (WILL_NOT_PERFORM), data 0
Comment 2 Björn Jacke 2020-05-04 23:43:56 UTC
PS: the wrong ldap error code that samba is retrning here is causing ADUC MMC to issue a weird error message saying "Not enough storage is available to complete this operation". In German locale "Für diesen Vorgang ist nicht genügend Speicher verfügbar". With the ldap error of a Windows DC, it correctly says that the used name already exists.