Skip to main content

Notifications

Announcements

Welcome to the Power Platform Communities
News and Announcements icon
Community site session details

Community site session details

Session Id :
Power Platform Community / Forums / Power Automate - Power Automate Desktop / Active Directory - Mod...
Power Automate - Power Automate Desktop
Unanswered

Active Directory - Modify user action - BUG

(1) ShareShare
ReportReport
Posted on by AG-03042044-0
I found a bug using the Power Automate Desktop action "Active Directory - Modify user", and I could not find the right place to submit a bug report, so the following is the bug report for someone to submit it to the product team.
 
Bug Description:
When using the action "Active Directory - Modify user", if the distinguished name has a comma "," the action will not find the user and throws the error:
 
Microsoft.PowerPlatform.PowerAutomate.Desktop.Actions.SDK.ActionException: Directory entry not found. Please check that the entry exists on the Active Directory server or that the given DN is correct.
   at Microsoft.Flow.RPA.Desktop.Modules.ActiveDirectory.Actions.ActiveDirectoryBase.HandleException(Exception ex)
   at Microsoft.Flow.RPA.Desktop.Modules.ActiveDirectory.Actions.ModifyUserAction.Execute(ActionContext context)
   at Microsoft.Flow.RPA.Desktop.Robin.Engine.Execution.ActionRunner.Run(IActionStatement statement, Dictionary`2 inputArguments, Dictionary`2 outputArguments)
 
To reproduce:
1. Set the action Distinguished Name to a valid value for a user that has a comma in its full name, for example: "CN=Doe\, John,OU=Users,DC=contoso,DC=com"
2. Execute the action
 
 
Bug Analysis:
I disassembled "Microsoft.Flow.RPA.Desktop.Modules.ActiveDirectory.Actions.dll" using ILSpy, and I found the following:

private static string EscapeLdapPathSpecialCharacters(string inputDistinguishedName)
{
    if (!inputDistinguishedName.Any((char c) => IllegalLdapSpecialCharacters.Contains(c)))
    {
        return inputDistinguishedName;
    }
    return inputDistinguishedName.Replace("\\", "\\5C5C").Replace(")", "\\29").Replace("(", "\\28")
        .Replace("*", "\\2A");
}
 
I tested that code in isolation, and I found that a "\" should be replaced with "\5C", but the above code uses "\5C5C".
 
Workaround:
There is no workaround for this bug, you can use a PowerShell script using for example the Disable-ADAccount command
 
 
 
 
 
Categories:
Licensing
  • Michael E. Gernaey Profile Picture
    Michael E. Gernaey 44,224 Super User 2025 Season 1 on at
    Active Directory - Modify user action - BUG
     
    I cannot comment on the validity of the bug or not, but I love the conviction lol I am not sure if Microsoft would be but I am.
     
    I would love it, if you were to reach out to support and pass on that information. It would be great to see it fixed. I would recommend just opening a ticket for your tenant, and they can credit it back as its a bug most likely.
     
    Thank you for sharing.

Under review

Thank you for your reply! To ensure a great experience for everyone, your content is awaiting approval by our Community Managers. Please check back later.

Helpful resources

News and Announcements

Welcome to the Power Platform Communities

Quick Links

Paul Stork – Community Spotlight

We are honored to recognize Paul Stork as our July 2025 Community…

Congratulations to the June Top 10 Community Leaders!

These are the community rock stars!

Announcing the Engage with the Community forum!

This forum is your space to connect, share, and grow!

Leaderboard > Power Automate

#1
Michael E. Gernaey Profile Picture

Michael E. Gernaey 497 Super User 2025 Season 1

#2
David_MA Profile Picture

David_MA 436 Super User 2025 Season 1

#3
Riyaz_riz11 Profile Picture

Riyaz_riz11 244 Super User 2025 Season 1

Last month Overall leaderboard

Featured topics

Flows are not visible for users who sign in with their personal accounts
List of actions cheat sheet for Power Automate Desktop

Product updates

Microsoft Power Platform Community release plans