AD Operations fail due to a COMException

Beau Harrison (Senior Product Software Engineer) 8 years ago updated by anonymous 8 years ago 1


Attempting to run an AD Changes or AD Sync Changes Operation fails. Examining the logs shows that this was due to a COMException.

Affected Software

  • FIM Event Broker


A COMException such as the following appears in the Event Broker logs:

System.Runtime.InteropServices.COMException(0x8007200A): The specified directory service attribute or value does not exist.


This error can be caused due to a number of reasons:

  • The target AD instance does not exist or cannot be found
  • The account being used does not have adequate permissions to access the target AD instance

It is recommended that you use an application such as ADSI Edit or LDP.exe from the same machine as the Event Broker instance to ensure that aliases are properly resolving, the LDAP filter is correct, and the account in question has correct permissions.