Last updated on APRIL 05, 2017
Applies to:JD Edwards EnterpriseOne Tools - Version 9.1 and later
Information in this document applies to any platform.
From the call stacks, security kernel is hung searching for user in LDAP, that means LDAP server is taking time to perform the search,
Extract from e1root_20140728.log
There was no timeout from EnterpriseOne server side. Considering that LDAP search is a synchronous operation the kernel just hangs waiting for reply from LDAP server.
1) What happens when you reach the limit specified in the .ini file for max number of retries?
Upon reaching the limit, that particular request fails, with the appropriate error code from the LDAP server, this may be error code 1 LDAP_OPERATIONS_ERROR or 3 LDAP_TIMELIMIT_EXCEEDED, determined by the LDAP Server
and the operation requesting a security check should fail, such as when users were unable to login.
2) What can we expect from JDE in terms of reconnection?
If the LDAP server is down for an unexpected period of time, various connections within E1 can timeout and fail causing further problems as every security check is routed through the LDAP server. These connection timeouts are based on timeout settings in the JDE.ini & the Jas.ini for web servers.
In case of disconnecting LDAP server due to network problems, the security kernel is not able to reconnect automatically even when the LDAP connection is available, again. UBEs that run on scheduler will fail. This causes all subsequent authentication attempts to fail and the only workaround is to kill security kernels or restart E1 instance.
The safest option would be to restart services to ensure all connections have been restored.
This enhancement request is for the security kernel to be able to reconnect automatically, when the LDAP connection is available, again.
Sign In with your My Oracle Support account
Don't have a My Oracle Support account? Click to get started
My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms