I’ve heard of others having this issue but no solution…All preq were followed, the AD had been extended during SCCM 2007 and the System Management Container has full rights based on document for Primary.
There is one primary and 4 secondaries. We keep getting the following :
Configuration Manager cannot update the already existing object "cn=SMS-MP-BFS-BWHSSP1.BS.WYNHS.ORG" in Active Directory.
Possible cause: The site server's machine account may not have full control rights for the "System Management" container in Active Directory
Solution: Give the site server's machine account full control rights to the "System Management" container, and all child objects in Active Directory.
Possible cause: The Active Directory object "cn= SMS-MP-BFS-BWHSSP1.BS.WYNHS.ORG " has been moved to a location outside of the "System Management" container, or has been lost.
Solution: Delete the object from its current location, and let the site create a new object.
Possible cause: The Active Directory schema has not been extended with the correct ConfigMgr Active Directory classes and attributes.
Solution: Turn off Active Directory publishing for each site in the forest, until the schema can be extended. The schema can be extended with the tool "extadsch.exe" from the installation media.