Share via

receiving dn-attribute-failure error in microsoft enta connect health sync errors

Hasu 0 Reputation points
2024-03-20T21:18:05.6366667+00:00

receiving object failed synchronization error with error type dn-attributes-failure.

Microsoft Security | Microsoft Entra | Microsoft Entra ID
0 comments

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Akhilesh Vallamkonda 15,320 Reputation points Microsoft External Staff Moderator
    2024-03-21T06:53:05.7966667+00:00

    Hi @Hasu

    Thank you for reaching out to the community forum!

    The error Dn-Attribute-failure usually occurs when there are duplicate attribute values exist for 2 or more users/groups/contacts in the on-premises domain but those values cannot be assigned to multiple users in Entra ID. For example, you can have the same SMTP/Proxy address configured for 2 users in local AD, but when you sync those users to Entra ID, you will encounter a Dn-Attribute-failure error as the value of these attributes must be unique for every user in Entra ID because schema doesn't allow two or more objects to have the same value of certain attributes, including email addresses.

    To resolve this error, you need to correct/change the duplicate attributes in your on-premises AD.

    After making the changes in your local AD, run Start-ADSyncSyncCycle -PolicyType Initial to run a full sync cycle.

    Hope this helps. Do let us know if you any further queries.

    Read more: End-to-end troubleshooting of Microsoft Entra Connect objects and attributes.

    Thanks,

    Akhilesh.

    Please "Accept the answer" if the information helped you. This will help us and others in the community as well.

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.