Hi there,
I am facing a problem want to need your help.
My topology is below:
AD ==> FIM == BIG-IP (Load balancing)==> AD LDS
- Connection from FIM to BIG-IP is encrypted with SSL (using port 636). And from FIM, I can retrieve AD LDS object information
- BIG-IP to AD LDS is not encrypted (using port 389).
I'm using Metaverse Rule to provision and sync user from AD to AD LDS. Import from AD to Metaverse works normally and see the provision will be run with MA Export to AD LDS
When I run Export User to AD LDS, the data is pushed into connector space successfully but cannot create user on AD LDS.
The error is “Illegal modify operation. Some aspect of the modification is not permitted.”
Hope anyone can help.
I do some google search and got the link here https://lainrobertson.wordpress.com/2011/03/03/ad-lds-ssl-woes/
But it is not look like exactly the issue I am facing..