To add a directory object for Lookup Login Credentials,
extend the schema for the directory.
Procedure
To extend the Active Directory schema:
- Log in to the AD domain with an administrator account that
is a member of the Schema Admins group.
- Edit the file called seas_ad.ldf. Replace all occurrences
of DC=example,DC=com with your AD domain name.
For example,
if your AD domain is acme.local, replace DC=example,DC=com with DC=acme,DC=local.
- Save the file.
- Make a backup of Active Directory.
- Run the following command:
ldifde -i -f seas_ad.ldf
Note: If
you get the error, access denied, the account you logged in may not
be an administrator in the Schema Admins group. If you meet these
requirements and you get the error, run the command using the administrator
account for the domain controller.