Computer Performance, Windows 2003, Exchange 2003, Logon Scripts

Google

Web Search Site

3CX Phone System for Windows - VOIP IP PBX

3CX Phone System for Windows -
VOIP IP PBX

Get your 5 free applications now

Application Publishing with 2X ApplicationServer

Code 80072032 - An invalid dn syntax

Guy recommends:
VBScript Training Video on CD

Code Error 800

Troubleshooting Code 80072032 - An invalid dn syntax

Introduction to error Code 80072032

Code 80072032 occurs when you execute a VBScript with an invalid LDAP reference.  A common scenario is that you are creating user objects in Active Directory.  Another scenario is that you are adding members to a group with an inappropriate scope.Code 80072032 - An invalid dn syntax

The Symptoms you get 80072032

A WSH message box pops-up and the script does not execute as you hoped.  One possibility is that you are using a WSCRIPT and you are missing a vital LDAP element in the script.

The Cause of Code 80072032

A clue to the problem lies in Error: line.  There is something wrong with the description of the object.  Most likely dn - distinguished name has not been properly specified, in this example, look for the LDAP reference in Line 13.  Although the scripts says Char: 1, it may not be the very first character, what its saying is that it cannot parse that line. Check LDAP here

See Also Group Scope problem

The Solution

On investigating line 13, you see that there is no 'cn=' in front of the name.  The script does not know how to interpret GuidoT.  In fact, GuidoT is the user's name, so just correct the script to read: cn=GuidoT.

Example 1 of Script for error 80072032

Note: The error is reported as Line 13, missing cn for example cn=GuidoT.

Note: Error 80072032 reports a dn (Distinguished name) error, whereas the code just needs a cn (common name).  In most cases it's only one element of the dn that is incorrect (CN=GuidoT).

 

'
' VBScript.
' To create a user called Guido in an OU called Worcester
' Note the domain is cp.com.
Set objOU = GetObject("LDAP://OU=Worcester,dc=cp,dc=com")
Set objUser = objOU.Create("User", "cn=GuidoT")
objUser.Put "sAMAccountName", "GuidoT"
objUser.Put "givenName", "Guido"
objUser.Put "initials", "A.G."
objUser.Put "sn", "Thomas"
objUser.Put "displayName", "Guido Thomas"
objUser.SetInfo
Set objUser = GetObject _
("LDAP://GuidoT,OU=Worcester,dc=cp,dc=com")
objUser.AccountDisabled = FALSE
objUser.SetInfo

Example 2 of Script for error 80072032

The LDAP path should be CN=Doctors, not plain Doctors

So you need to add "CN=" & to this line:

Set objNewGroup = objOU.Create("Group", strNewGroup)

Set objNewGroup = objOU.Create("Group", "cn=" & strNewGroup)

Note: Once again error 80072032 reports a dn (Distinguished name) error, where as the code just needs a cn (common name).  The answer is that the one element of the dn is incorrect (CN=Doctors), however the whole dn LDAP path gets charged with error 80072032.

 

' CreateGroup.vbs
' Creates Group to add members.
' Version 2.3
' Guy Thomas 18th July 2004

Option Explicit

Dim objAD, objGroup, objNewGroup, objUser, objRootDSE
Dim objDomain, objOU ' Objects
Dim strGroup, strNewGroup, strPath, strUser
Dim strOU, strDNSDomain ' Strings

Set objRootDSE = GetObject("LDAP://RootDSE")
strDNSDomain = objRootDSE.Get("DefaultNamingContext")
strOU ="OU=Droitwich,"

strPath ="LDAP://" & strOU & strDNSDomain
Set objOU = GetObject(strPath)

' 2) Create Global group. Edit the next line to your group name
strNewGroup ="Doctors"
WScript.Echo "Is this the group you intended? " & strNewGroup

' Remember to check strNewGroup
' We need On error... in case already exists
'On Error Resume Next
Set objNewGroup = objOU.Create("Group", strNewGroup)
objNewGroup.Put "sAMAccountName", strNewGroup
objNewGroup.SetInfo
Wscript.Echo "Check ADUC " & strOU & " for " & strNewGroup

WSCript.Quit

' End of Script

Example 3 Group Scope Problem

Error 80072032 - The server is unwilling to process the request

This error occurred on a line where I was attempting to add a user to a group in a different domain within the same forest. I had forgot to change that group's type to 'domain local' and received this error message (it was previously a global group, which does not allow members for remote domains).

 

Kindly sent in by Paula. 

Solarwinds IpMonitorTry a different solution, download SolarWinds ipMonitor

Here is my thinking, ipMonitor will give you valuable data about your network and servers.  This extra information just may unlock the solution to your error code.  One more thing, sometimes when troubleshooting you go around in circles; therefore if you try a different, but related approach, you may just crack the problem.  Free Download of SolarWinds ipMonitor

Computer Training Software - Recommended Training VideosGuy Thomas recommends Computer Training Software

Their topics and material are ideal for getting you started with VBScript.  The videos are easy to follow and you can control the pace.  Try their free demo material and then see if you want to buy the full package. See more about VB Script Training CD.

Do you need extra help?

For interpreting the WSH messages check Diagnose 800 errors.

For general advice try my 7 Troubleshooting techniques

Give something back?

Would you like to help others?  If you have a good example of this error, then please email me, I will publish it with a credit to you:

 


Download my Logon Script eBook for only $6.25

Logon ScriptThe extra features you get in your eBook include, more pages full of detailed examples.  Also, ten 'how to...' sections, with screen shots showing which menus to use.  Go for Guy's eBook - and get a printable version with copy enabled and no expiry date.

  Jumbo Script 7 Package

 *

Google

Webcomputerperformance.co.uk

GFi Events Manager

Guy Recommends: GFi EventsManager

Here is a solution to monitor, manage and archive thousands of events that are generated by devices across your entire network.  Get your free evaluation copy of GFI EventsManager.

 

Home Copyright © 1999-2008 Computer Performance LTD All rights reserved

Please report a broken link, or an error.