System: SharePoint Server Enterprise 2010
I'm having an issue setting up the people picker for a one-way trust. I have narrowed down the people picker (for testing purposes) to only select from the external domain with the following stsadm command:
stsadm -o setproperty -pn peoplepicker-searchadforests -url http://testing.domain.com -pv domain:domain.com,domain\ad_account,password
Here is the error that I get:
Error in searching user '<user>' : System.Runtime.InteropServices.COMException (0x8007203A): The server is not operational.
at System.DirectoryServices.DirectoryEntry.Bind(Boolean throwIfFail)
at System.DirectoryServices.DirectoryEntry.Bind()
at System.DirectoryServices.DirectoryEntry.get_AdsObject()
at System.DirectoryServices.DirectorySearcher.FindAll(Boolean findMoreThanOne)
at Microsoft.SharePoint.WebControls.PeopleEditor.SearchFromGC(SPActiveDirectoryDomain domain, String strFilter, String[] rgstrProp, Int32 nTimeout, Int32 nSizeLimit, SPUserCollection spUsers, ArrayList& rgResults)
at Microsoft.SharePoint.Utilities.SPUserUtility.SearchAgainstAD(String input, SPActiveDirectoryDomain domainController, SPPrincipalType scopes, SPUserCollection usersContainer, Int32 maxCount, String customQuery, String customFilter, TimeSpan searchTimeout,
Boolean& reachMaxCount)
at Microsoft.SharePoint.Utilities.SPActiveDirectoryPrincipalResolver.SearchPrincipals(String input, SPPrincipalType scopes, SPPrincipalSource sources, SPUserCollection usersContainer, Int32 maxCount, Boolean& reachMaxCount)
at Microsoft.SharePoint.Utilities.SPUtility.SearchPrincipalFromResolvers(List`1 resolvers, String input, SPPrincipalType scopes, SPPrincipalSource sources, SPUserCollection usersContainer, Int32 maxCount, Boolean& reachMaxCount, Dictionary`2 usersDict).
I have confirmed TCP/IP access to domain controller on 389 via telnet, so the Domain Controller is open and listening on port 389. I have also gone through the steps of creating a User Profile Sync connection (but not actually committed the addition) just to make sure that the external domain account can browse LDAP and it can do so successfully.
I think that I have eliminated any network related issues (TCP/IP, Firewall, DNS, etc.) but I still get the error indicating that I'm having issues connecting to the external DC.
Any ideas?
thanks,
KSD