Scenario: a load balancer for Active Directory (AD) authentication implemented along with the Synchronization workflow in the direction of the AD target system which is created in the Synchronization project. However, the scheduled daily synchronization which updates the User accounts in One Identity Manager (i.e. ADSAccount) to AD target system fails intermittently with this error message:
"system.DirectoryServices.DirectoryServicesCOMException There is no such object on the server"
To resolve the intermittent failure, enable "ServerBind" to enforce that every request must be processed by the defined Domain Controller (DC) in the synchronization project's connection setting. The DC defined in the connection settings in the sync project is only used for the authentication if "ServerBind" is not set.
This is also the DC where the Job server is connected which does not mean that every request is answered by this particular DC. After the authentication, it depends on the options of the connection and on the configuration in AD regarding which DC will answer the request.
If the option "ServerBind" is not set, there is no control or information from Identity Manager regarding which DC in a load balanced AD environment is answering such requests.
For more information please refer to the Administration Guide for Connecting to Active Directory:
Creating a synchronization project for initial synchronization of an Active Directory domain