In Unity 5.x - Sync failed: bgeo. Error: LDAP_INSUFFICIENT_RIGHTS

Unanswered Question
Jun 11th, 2008

I am attempting to import from AD to Unity to add subscribers and I get this error so it does not import.

******************* Completed Import of Unified Subscribers **************************

******************* Starting Synker Operation ******************************

Started on June 11, 2008 at 10:04:13.


Sync failed: bgeo. Error: LDAP_INSUFFICIENT_RIGHTS

The Cisco Unity server must have permissions to create/modify objects in the directory. Please run the Cisco Unity Permissions Wizard to grant Unity the appropriate permissions.

Objects that failed to sync: 1.

Completed on June 11, 2008 at 10:04:13.

******************* Completed Synker Operation **************************

I have ran the Permissions Wizard and doesn't correct the issue. Any ideas?

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Brandon Buffin Wed, 06/11/2008 - 07:31

When you run the PW, be sure that you are giving Unity permissions at a sufficient level in AD for it to access the necessary OUs. For example, if you are only giving Unity access to the Users OU, it will not be able to access other OUs in your AD structure. One option is to give Unity permissions at the domain level so that it can access all OUs.

Hope this helps.


Jaime Valencia Wed, 06/11/2008 - 07:57

u running the PW with an account that meets the following:

Please run the PW with an account that has the following:

# Log on to the Cisco Unity server by using an account that:

* Is a member of the Domain Admins group in the domain in which the Cisco Unity server is being installed, or that has permissions equivalent to the default permissions for the Domain Admins group.

* Is either an Exchange Full Administrator or a member of the Domain Admins group in the domain that contains all of the domains from which you want to import Cisco Unity subscribers.

Caution! If you try to run the Permissions wizard using an account that has less than the default permissions for a Domain Admin, the Permissions wizard may not be able to grant all of the permissions required by the installation account and the services accounts. If the Permissions wizard cannot grant all of the required permissions, either the Cisco Unity installation will fail, or Cisco Unity will not run properly after it has been installed.



if this helps, please rate


This Discussion