My Oracle Support Banner

dcmctl Fails With [Ldap Error Code 49 - Invalid Credentials] After OID Replication Configured (Doc ID 1088933.1)

Last updated on MARCH 08, 2017

Applies to:

Oracle Internet Directory - Version to [Release 10gR2 to 10gR3]
Information in this document applies to any platform.
***Checked for relevance on 13-DEC-2012***


DCM operations are failing on the Oracle Internet Directory (OID) replica node after configuring OID replication with error:

ADMN-202046 'Unable to establish connection to the Oracle Internet Directory Server. [LDAP: error code 49 - Invalid Credentials]'

Example command and error output:

$ORACLE_HOME/dcm/bin/dcmctl whichFarm

The OracleAS Repository API threw an exception when obtaining the connect string to the Metadata Repository
Check the exception thrown by the Repository API for resolution information.
Some common causes of this problem are as follows:
OID is not running or unavailable
the file is misconfigured with incorrect OID connection information
OID permissions are incorrectly defined
Base Exception:
Unable to establish connection to the Oracle Internet Directory Server
ldap:// Base Exception : javax.naming.AuthenticationException: [LDAP: error code 49 - Invalid Credentials]

DCM operations are successful when run on the Master OID node.

The problem is specific to the new replica or Remote Master Site (RMS) node.

Steps to reproduce

1. Install Master OID. This instance/node may have been running for some time before it was decided to replicate the environment.
2. Install second OID on another server using a different database and standard OID-only installation option.
3. Configure OID replication according to the documentation:

Oracle Internet Directory Administrator's Guide 10g ( Task 3: Set Up Oracle Database Advanced Replication for a Directory Replication Group

4. Verify replication between the nodes is working.
5. Attempt to install an Identity Management patchset or run any DCM operation that connects to OID and get error:

ADMN-202046 'Unable to establish connection to the Oracle Internet Directory Server . [LDAP: error code 49 - Invalid Credentials]'


To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!

In this Document

This document is being delivered to you via Oracle Support's Rapid Visibility (RaV) process and therefore has not been subject to an independent technical review.
My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.