Microsoft KB Archive/841123

= You receive &quot;The user does not exist in Active Directory&quot; error message when trying to add users in Microsoft Business Solutions CRM v1.2 =

PSS ID Number: 841123

Article Last Modified on 4/28/2005

-

The information in this article applies to:


 * Microsoft Business Solutions CRM 1.2

-



SYMPTOMS
In Microsoft Business Solutions CRM version 1.2, it will fail if you try to add users to Microsoft CRM through the user form in the Microsoft CRM Web application or through User Manager, which is part of Microsoft CRM Deployment Manager. You receive the following error message in the application event log on the Microsoft CRM server:

Error: The user does not exist in Active Directory.

d:\crm\build\3297\src\platform\security\crmsecurity\secmain.cpp 1945

Error Message: The user does not exist in Active Directory.

Error Details: Details on this error have not been provided by the platform.

Source File: d:\crm\build\3297\src\platform\security\crmsecurity\secmain.cpp

The type of Microsoft CRM license you have controls the number of users that you can add to the Microsoft CRM implementation. A person who has the Microsoft CRM System Administrator role can use either User Manager or the Microsoft CRM Web application to add licensed users.



CAUSE
This error occurs because the Microsoft CRM implementation is installed in a child domain and the following conditions are true:
 * None of the child domain controllers are global catalog servers for the domain that contains the Microsoft CRM server.
 * The users who can not be added to Microsoft CRM exist in a child or parent domain that is different from the domain that contains the Microsoft CRM server.
 * If one of the child domain controllers in the Microsoft CRM server domain is set up as a global catalog server and this error occurs, Active Directory replication may not have occurred between the domain that contains the Microsoft CRM server and the domain that contains the users.



RESOLUTION
To solve this issue, use either or both of the following methods:
 * Make one of the domain controllers in the domain that contains the Microsoft CRM server a global catalog server. This will make it easier for the Microsoft CRM server to find the Active Directory information it needs regardless of which domain in the forest actually contains the data. By default, a global catalog is created automatically on the initial domain controller in the forest. If multiple domain controllers exist for a single domain, do not set up a global catalog server on a domain controller that also holds the infrastructure master role, unless only one domain controller exists in that domain.

Procedures to configure one of the child domain controllers as a global catalog server are available in the Windows Server 2003 Help under the topic &quot;Global Catalogs and Sites&quot; located at

http://www.microsoft.com/resources/documentation/WindowsServ/2003/standard/proddocs/en-us/Default.asp?url=/resources/documentation/WindowsServ/2003/standard/proddocs/en-us/gc_when.asp


 * Make sure that Active Directory replication has occurred. You can force replication between two domains by following the procedures available on the Windows 2000 Server Resource Kit Web site at

http://www.microsoft.com/windows2000/en/server/help/default.asp?url=/windows2000/en/server/help/sag_addeploy_8.htm

