Horizon Error: Failed to perform clientauth operation (Organizational Unit was not found)
When trying to add a kiosk client to the authentication list of Horizon, you suddenly get an error message stating that the OU cannot be found.
Error: Failed to perform clientauth operation (Organizational Unit ‘LDAP://OU=Pool02,OU=Virtual Desktops,OU=Computers,OU=Org,DC=MYDOMAIN,DC=LOCAL’ was not found. Please make sure it exists and the distinguished name is specified as a full path. ERROR: for domain MYDOMAIN.LOCAL (MYDOMAIN.LOCAL) There is no such object on the server. Info=LDAP Provider:0000208D: NameErr: DSID-03100238, problem 2001 (NO_OBJECT), data 0, best match of: ‘OU=Virtual Desktops,OU=Computers,OU=Org,DC=MYDOMAIN,DC=LOCAL’)
On further inspection it became clear that the Microsoft engineer had deleted the configured OU, because they made a new hierarchy in AD. So how can we fix this error? There are two ways you will be able to register the client in the new OU.
The first is to extend the command by specifying the OU. So instead of using:vdmadmin -Q -clientauth -add -clientid 00:80:64:xx:xx:xx -domain MYDOMAIN
You’ll enter:vdmadmin -Q -clientauth -add -clientid 00:80:64:xx:xx:xx -domain MYDOMAIN -ou "OU=Pool06,OU=Virtual Desktops,OU=Computers,OU=Org,DC=DOMAIN,DC=LOCAL"
A better and more permanent approach is to reconfigure Horizon so that it points to the new OU.
To get the current settings, you can use the following command:vdmadmin -Q -clientauth -getdefaults
Client Authentication Default Settings
======================================
Custom Prefix : custom-
Organizational Unit : OU=Pool02,OU=Virtual Desktops,OU=Computers,OU=Org,DC=MYDOMAIN,DC=LOCAL
Expire Password : false
Group : <not set>
To change this, you can use the setdefaults command;vdmadmin -Q -clientauth -setdefaults -ou “OU=Pool06,OU=Virtual Desktops,OU=Computers,OU=Org,DC=MYDOMAIN,DC=LOCAL”
If you get this error and your AD is intact, then most likely you’ll have a permissions issue. Also make sure that you run the commands under an elevated prompt.
Started his working life as a system manager at a health care organization. Is now a dedicated technical consultant at PepperByte. Specialist in virtualization and security.
Core qualities
Eager to learn, punctual, fun, loyal, patient
Hobbies
Socializing, watching television series and sports
Job description
Technical Consultant
Leave a Reply
Want to join the discussion?Feel free to contribute!