18 Nov

Here is an error that I’ve seen on couple installations:

SMS Active Directory System Discovery Agent failed to bind to container LDAP://DC=domain,DC=xxx. Error: The server does not support the requested critical extension.
Possible cause: The AD container specified earlier might be invalid now. The Domain Controller is inaccessible.
Solution: Please verify that the AD container paths specified are valid. Confirm accessibility of the site server to the Domain Controller to be queried.

In both situations the fix was different.
Solution 1:
In SCCM console go to Discovery Methods open Active Directory discovery, delete the containers and create them again.
I’m not sure what this does but it fixed the errors in on instance.
Solution 2:
This started happening after SCCM SP2 was applied. I’ve tied solution 1 but was still getting these errors. Then I came around a KB978575 article from Microsoft. After applying the fix the errors disappeared and everything was working as expected. Please read the article first and see if the symptoms are the same that you are experiencing.

