Active Directory or LDAP Account Related Errors in Password Vault

the table below outlines most common errors when adding active directory/ldap accounts, along with their recommended solutions issue error code in logs description and possible solution unable to add account error code 3 ldap timelimit exceeded indicates that the operation's time limit specified by either the client or the server has been exceeded logs should be examined on active directory unable to add account error code 7 ldap auth method not supported indicates that during a bind operation the client requested an authentication method not supported by the ldap server check the vault configuriation unable to add account error code 8 ldap strong auth required indicates one of the following in bind requests, the ldap server accepts only strong authentication check the vault configuriation unable to add account error code 32 ldap no such object indicates the target object cannot be found check the username and domain name of the account unable to add account error code 34 ldap invalid dn syntax indicates that the syntax of the dn is incorrect check the vault configuriation unable to add account error code 49 ldap invalid credentials indicates that during a bind operation one of the following occurred the client passed either an incorrect dn or password, or the password is incorrect because it has expired, intruder detection has locked the account, or another similar reason check the vault configuration, username and domain name unable to add account error code 49 error code 52e ad invalid credentials indicates an active directory (ad) acceptsecuritycontext error, which is returned when the username is valid but the combination of password and user credential is invalid check the vault configuration, username and domain name unable to add account error code 49 error code 525 user not found indicates an active directory (ad) acceptsecuritycontext data error that is returned when the username is invalid check the domain name, username and password unable to add account / unable to reset password error code 49 error code 530 not permitted to logon at this time indicates an active directory (ad) acceptsecuritycontext data error that is logon failure caused because the user is not permitted to log on at this time check permissions on active directory unable to add account / unable to reset password error code 49 error code 532 password expired indicates an active directory (ad) acceptsecuritycontext data error that is a logon failure the specified account password has expired check the username and password unable to add account / unable to reset password error code 49 error code 533 account disabled indicates an active directory (ad) acceptsecuritycontext data error that is a logon failure the account is currently disabled check permissions and account status on active directory unable to add account / unable to reset password error code 49 error code 568 error too many context ids indicates that during a log on attempt, the user's security context accumulated too many security ids this is an issue with the specific ldap user object/account which should be investigated by the ldap administrator unable to add account / unable to reset password error code 49 error code 701 password expired indicates an active directory (ad) acceptsecuritycontext data error that is a logon failure the user's account has expired ldap user object/account which should be investigated by the ldap administrator unable to add account / unable to reset password error code 50 ldap insufficient access indicates that the caller does not have sufficient rights to perform the requested operation ldap user object/account which should be investigated by the ldap administrator unable to add account / unable to reset password error code 52 ldap unavailable indicates that the ldap server cannot process the client's bind request, usually because it is shutting down check active directory/ldap server or network connection unable to add account / unable to reset password error code 52e ad invalid credentials indicates an active directory (ad) acceptsecuritycontext error, which is returned when the username is valid but the combination of password and user credential is invalid this is the ad equivalent of ldap error code 49 ldap invalid credentials check the vault configuration, username and domain name unable to add account / unable to reset password error code 775 user account locked indicates users are unable to log in because the user account is locked ldap user object/account which should be investigated by the ldap administrator