Error -2147016690 when attempting to extend the schema.

Document ID:7940307
Creation Date:19-Aug-2009
Modified Date:26-Apr-2012
- Micro Focus Products:
  SecureLogin

Environment

SecureLogin

SecureLogin SSO

3.5.1.x, 3.5.2.0

MS AD, LDAP, NT4, Citrix, Terminal Services

Situation

User was attempting to extend the Active Directory Schema but when using ADSSchema.exe the following error occurred even though they were a Schema Admin.

Error -2147016690

Resolution

Install the Active Directory Schema snap-in to the MMC console (see link below for details on how to do this). In the left hand side of the console, right click on Active Directory Schema and select Operations Manager. Enable the “Schema may be modified on this Domain Controller” check box. Click Ok. Schema Admins now have the ability to extend the schema.

For more information on installing the Active Directory Schema snap-in and setting the modification rights, see the article 285172 from Microsoft.

http://support.microsoft.com/default.aspx?scid=kb;en-us;285172

Additional Information

Root Cause

The user was attempting to extend the schema on a domain controller where schema modifications were disallowed.