Authentication failure using External auth plugin (Doc ID 1149803.1)

Last updated on JUNE 30, 2017

Applies to:

Oracle Internet Directory - Version 10.1.2 to 10.1.4.3 [Release 10gR2 to 10gR3]
Information in this document applies to any platform.
***Checked for relevance on 01-Feb-2013***

Symptoms

SunOne PLUGIN:
External plugin Authentication raising ORA-31201 intermittently causing Authentication failure.
Error found in debug tables of plugin.

example:
5277 ORA-31201: DBMS_LDAP: generic error: Invalid LDAP Session 7/1/2010 8:28:42 AM 015400C80001
5276 Exception in when_bind_replace(). Error code is -31201 7/1/2010 8:28:42 AM 015400C80001
5275 ldap_session: 01000000 7/1/2010 8:28:42 AM 015400C80001
5274 === Begin when_bind_replace() 7/1/2010 8:28:42 AM 015400C80001


AD PLUGIN:

External plugin Authentication raising ORA-31201 intermittently causing Authentication failure.
Error found in debug tables of plugin.

example:
5277 ORA-31201: DBMS_LDAP: generic error: Invalid LDAP Session 7/1/2010 8:28:42 AM 015400C80001
5276 Exception in when_bind_replace(). Error code is -31201 7/1/2010 8:28:42 AM 015400C80001
5275 ldap_session: 01000000 7/1/2010 8:28:42 AM 015400C80001
5274 === Begin when_bind_replace() 7/1/2010 8:28:42 AM 015400C80001


Authentication Plugin is failing to authenticate user logins intermittently. Approximately 5 out of 10 login attempts succeed, the others fail with: Authentication Failed.

Dropping and recreating the plugin and bouncing Midtier and infrastructure tier resolves for a few days but the issue comes back.

The symptoms are like those described in Note 444256.1 but the latest patchset is already applied, plus doublechecked that the ODS.OIDADPSWD package also already have theworkaround to handle the 81 timeout error.

After enableing plugin table debugging at the database level as per documentation:

Oracle Identity Management Integration Guide 10g Release 2 (10.1.2) > 19.2.2.6 Debugging the Windows NT External Authentication Plug-in

The debug info for one successful login, then subsequent failures are as follows:

6063 === Begin when_compare_replace() 7/13/2011 8:11:28 AM 018700120001
6064 ldap_session: 00000002 7/13/2011 8:11:28 AM 018700120001
6065 Exception in when_compare_replace(). Error code is -31201 7/13/2011 8:11:28 AM 018700120001
6066 ORA-31201: DBMS_LDAP: generic error: Invalid LDAP Session 7/13/2011 8:11:28 AM 018700120001
6067 === Begin when_compare_replace() 7/13/2011 8:11:35 AM 018700120001
6068 ldap_session: 00000002 7/13/2011 8:11:35 AM 018700120001
6069 Exception in when_compare_replace(). Error code is -31201 7/13/2011 8:11:35 AM 018700120001
6070 ORA-31201: DBMS_LDAP: generic error: Invalid LDAP Session 7/13/2011 8:11:35 AM 018700120001
6071 === Begin when_compare_replace() 7/13/2011 8:11:45 AM 018700120001
6072 ldap_session: 00000002 7/13/2011 8:11:45 AM 018700120001
6073 Exception in when_compare_replace(). Error code is -31201 7/13/2011 8:11:45 AM 018700120001
6074 ORA-31201: DBMS_LDAP: generic error: Invalid LDAP Session 7/13/2011 8:11:45 AM 018700120001


Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms