I'm using a rust program to perform a modify_replace command on an Active Directory group. This command modify_replaces aroung 30,000 users. I verified the user has read/write access to the group. I'm modifying the member attribute on a group object.
Adding the largest successful modify_replace is about 8,000 objects.
The error I receive is:
2022-08-26T17:02:55.001Z ERROR [groupsyncer::ldap::ad] "000021B1: SvcErr: DSID-0315154A, problem 5005 (UNABLE_TO_PROCEED),
The issue for me was that a few users in the modify_replace could not be added to the group. By adding them one at a time using modify_replace, I could narrow it down. For safety I chose modify_add as the only option.