Troubleshoot failed activation of Dell Data Protection Encryption by verifying user principal name settings

Affected Products:

• Dell Data Protection | Enterprise Edition

Affected Versions:

• v7.x - 11.x

If an encrypted endpoint attempts to contact the Dell Data Protection | Enterprise Edition server using a domain\username format, the user receives access is denied message. We recommend especially, in a multidomain environment, that users login using a User Principal Name (UPN).

Error:

User activation is not successful.
Unable to activate across all systems with Dell Data Protection | Encryption installed.

In the CMG Shield log file:

org.apache.xmlrpc.XmlRpcException: Failure during activation: Error resolving user <UPN>
Activator: 423] [SUPPORT] *** Unable to activate new user <UPN>'. Activation failed with error code 0x3eb.

In the Dell Data Protection | Encryption Shield log file:

XmlRpcActivate: 145] Activation request failed [device server fault:0x3eb]: Failure during activation: Error resolving user -<Non-UPN>

In the Compatibility Output log:

ERROR Resolver [RMI TCP Connection(1864)-192.168.1.1] - Unable to find user:<UPN> while searching the domain:LDAP://<fully-qualified-domain-name>:389/DC=<domain>,DC=<domain-suffix>
ResolverException
Nested Exception --> null

Not Applicable

To work around this issue:

1. Verify that the user exists in Active Directory (AD).
2. Verify that the user has the UPN assigned to their account in Active Directory (AD).

Note: Reference the Microsoft Knowledge Base Article Add User Principal Name Suffixes for instructions on how to add UPN information to an AD user's account.

3. Go to the Remote Management Console and remove NETBIOS names from Alias.
4. Ensure that the User name is in UPN format.

To contact support, reference Dell Data Security International Support Phone Numbers.
Go to TechDirect to generate a technical support request online.
For additional insights and resources, join the Dell Security Community Forum.