Ldap Users cannot updated synced from AD

Aung Phyo Oo · 4 weeks ago

I cannot manually update and reset the new password Ldap Users synced from AD, Shown 'invalid update'. How to fix this issue?

Ajay_Chavan · 4 weeks ago

When you sync users from Active Directory (LDAP) into ServiceNow, the system automatically locks down those user records to prevent conflicts between what's in ServiceNow and what's in AD. This is why you get "invalid update" errors when trying to manually change LDAP user passwords or details. To fix this, you have a few options: you can temporarily change the user's "Source" field from "LDAP" to blank, make your updates, then change it back; the safest approach is usually to reset the password in Active Directory first, then force a sync in ServiceNow so both systems stay in sync. If you need emergency access, you can also create a separate local admin account that's not connected to LDAP at all.

Glad I could help! If this solved your issue, please mark it as ✅ Helpful and ✅ Accept as Solution so others can benefit too.*****Chavan A.P. | Technical Architect | Certified Professional*****

Aung Phyo Oo · 4 weeks ago

I want to need to update and reset password existing Ldap users and than i don't want to blank "Source". How to fix?

Ajay_Chavan · 4 weeks ago

@Aung Phyo Oo

Please write a Background script , use setworkflow(false)

Glad I could help! If this solved your issue, please mark it as ✅ Helpful and ✅ Accept as Solution so others can benefit too.*****Chavan A.P. | Technical Architect | Certified Professional*****

GlideFather · 4 weeks ago

Hi @Aung Phyo Oo,

please describe the steps that you took to update the password.

Assuming the LDAP synchronisation, aren't the users logged in via SSO? Then updating a local password may cause that error...

———
/* If my response wasn’t a total disaster ↙️ ⭐ drop a Kudos or Accept as Solution ✅ ↘️ Cheers! */