During client enrollment with the PGP Universal Server, you receive the following error:
Operations error, error -10950 Please contact your security administrator)
This issue can occur when using Directory Synchronization with Active Directory for client enrollment, the domain controller does not allow anonymous connections and the PGP Universal Server is configured without an account for the Bind DN. If the Active Directory (AD) LDAP server requires an account with read access when the connecting to the domain AD server, you must specify a Bind DN in the Directory Synchronization on the PGP Universal Server.
This error is resolved by entering an account for the Bind DN which as read access to the Active Directory LDAP server. For more information on the syntax used for the Bind DN, see the following articles: