Symptoms

AD sync session fails with the error:

Message 
User 'ASP.NET Machine Account' failed with error: 'Default domain for login names not specified.', 170

Cause

Incorrect configuration of Service User settings under CCP > Directory Synchronization > Service > Service Configuration > Service User. The value Default domain for login names is not specified (see the screenshot below):

Resolution

Specify the correct domain name in Default domain for login names field and repeat the synchronization attempt.

Internal content