Adding A Uniquemember To An Empty Group In OID 10g Fails With Error: One or more values for attribute uniquemember does not exist / Or: "invalid attribute" error (Doc ID 1285654.1)

Last updated on SEPTEMBER 14, 2016

Applies to:

Oracle Internet Directory - Version 9.0.4 to 10.1.4.3 [Release 10gR1 to 10gR3]
Information in this document applies to any platform.

Symptoms

Trying to modify an Oracle Internet Directory (OID) 10g group entry to replace a uniquemember via dbms_ldap fails with:

An error was encountered - -31202 -ERROR- ORA-31202: DBMS_LDAP: LDAP client/server error: No such attribute. One or more values for attribute uniquemember does not exist


Trying via a third party ldap tool (such as LDAP Browser) fails with:

Failed to update entry cn=my_entry, cn=My_Group, cn=Groups, dc=mycompany,dc=com
Root error: [LDAP: error code 16 - One or more values for attribute uniquemember does not exist]


Trying via ldif file and ldapmodify commands fails with:

ldap_modify: No such attribute
ldap_modify: additional info: One or more values for attribute uniquemember does not exist


A different 3rd party tool (such as Tibco for example) may fail with:

"invalid attribute" error




The same code and tools work if first manually adding a uniquemember to the group, i.e., via Oracle Directory Manager (ODM / oidadmin) or via ldif file and ldapmodify, so that the group already contains at least one uniquemember beforehand.



Additional diagnosis:
Turning on level 1 or higher debug in OID as per <Note:397821.1> may then show the following for the failed attempt:

BEGIN
2011/05/13:15:10:33 * ServerWorker (REG):7
ConnID:973798 * mesgID:1486 * OpID:1485 * OpName:modify
ConnIP:<IP address> ConnDN: cn=orcladmin
INFO : gslfmeADoModify: dn = CN=My_Group,cn=groups,dc=mycompany,dc=com
15:10:33 * gslfmeADoModify: dn (CN=My_Group,cn=groups,dc=mycompany,dc=com)
15:10:33 * gslfmeADoModify: modifications:
15:10:33 * replace: description
15:10:33 * replace: orclisvisible
15:10:33 * replace: owner
15:10:33 * replace: uniquemember
15:10:33 * replace: displayname
15:10:33 * replace: cn
15:10:33 * gslfmeADoModify:conn=973798 op=1485 MOD dn="CN=My_Group,cn=groups,dc=mycompany,dc=com"
15:10:33 * Replacing description in gslsbmApplyModtoEntry()
15:10:33 * Replacing orclisvisible in gslsbmApplyModtoEntry()
15:10:33 * Replacing owner in gslsbmApplyModtoEntry()
15:10:33 * Replacing uniquemember in gslsbmApplyModtoEntry()
15:10:33 * Replacing displayname in gslsbmApplyModtoEntry()
15:10:33 * Replacing cn in gslsbmApplyModtoEntry()
15:10:33 * INFO : gsleswrASndResult2 RESULT = 16 nentries=0
END


The value after RESULT = is an LDAP error code. In this case the value returned is 16, which means:

LDAP_NO_SUCH_ATTRIBUTE
Attribute does not exist in the entry specified in the request.

Note:  Details about the standard LDAP error codes returned by OID Server are available in the following documentation:
Oracle Internet Directory Administrator's Guide 10g (10.1.4.0.1) Part Number B15991-01
Appendix L Troubleshooting Oracle Internet Directory
Topic L.1.3.4 Standard Error Messages Returned from Oracle Directory Server


Changes

 

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms