Hi,
thank you for developing bonsai, the API is much nicer than python-ldap. I have a problem that when I create a new user with bonsai via AD, then I cannot set the userAccountControl attribute to enable the user:
bonsai.errors.UnwillingToPerform: Unwilling To Perform. (0x0035 [53])
Do you have an idea what is wrong? I checked already the password, it adheres the AD policies and I also tried setting 512 instead of 66048. I also tried setting it in the initial create, but the error is then the same.
I added a test case when an AD user is created, then enabled. The entry is based on your example.
The test ran successfully on the CI, so my guess is that the error is related some AD configurations. The UnwillingToPerform error could indicate that some security criteria are not met.
Hi, thank you for developing bonsai, the API is much nicer than python-ldap. I have a problem that when I create a new user with bonsai via AD, then I cannot set the
userAccountControl
attribute to enable the user:The account is created but the
modify
fails:bonsai.errors.UnwillingToPerform: Unwilling To Perform. (0x0035 [53])
Do you have an idea what is wrong? I checked already the password, it adheres the AD policies and I also tried setting
512
instead of66048
. I also tried setting it in the initial create, but the error is then the same.