Forum Discussion
SP 2019 - no longer able to add AD security group to Sharepoint Group for permissions
Trevor Seward Hey Trevor, thanks for the response. I looked at those logs and it looks like the user profile sync service account is not working. The account is not locked so I'm not sure if its a different issue as the error indicates a failure to decrypt the connection password. I have not seen this error before. I rather not change the password yet as I think my old sharepoint admin used it elsewhere which we are identifying. Would this be related to my inability to add AD security groups to sharepoint permission.
General 7200 Critical Failed to decrypt connection password for ConnectionForectName 'domain.local', ConnectionSynchronizationOU 'DC=SOG,DC=Local', ConnectionUserName 'domain\account'. Please refresh connection credentials. a77c6a9f-4b17-a0cf-6cd8-e9f87678dff3
- Essentially that is saying you need to re-enter the credentials for the Sync account in the AD Import configuration screen.
We ran a full synchronization and it resolved this issue with the user profile sync. We are still having the issue where we can only ad domain user accounts but not domain security group. Is there any other way to troubleshoot this?
We figured it out. We ran a command for the people picker to our trusted 2nd domain and on sharepoint servers and not just frontends. Needed to be ran on app server as well but had to find the app cred key from front ends and imported them. Seems to work now.