DIP AD to OID Synchronization OR Bootstrap Fails with ODIException: Invalid Credentials / javax.naming.AuthenticationException: [LDAP: error code 49 ...
(Doc ID 1327108.1)
Last updated on AUGUST 11, 2022
Applies to:
Oracle Internet Directory - Version 9.0.4 and laterInformation in this document applies to any platform.
Symptoms
Microsoft (MS) Active Directory (AD) to Oracle Internet Directory (OID) Directory Integration Platform (DIP) synchronization and/or bootstrap fails with DIP_GEN_AUTHENTICATION_FAILURE followed by LDAP: error code 49.
Example 11g wls_ods1-diagnostic.log error:
<Aug 11, 2017 3:20:58 PM > <Error> <oracle.dip> <BEA-000000> <maximum LDAP connection retry count reached>
<Aug 11, 2017 3:20:58 PM > <Error> <oracle.dip> <BEA-000000> <Connection to LDAP server failed - Check configuration of DIP server.>
<Aug 11, 2017 3:20:58 PM > <Error> <oracle.dip.<PROFILE_NAME>> <DIP-10007> <error in execution of Agent thread: ADtoOID
ODIException: Invalid Credentials
at oracle.ldap.odip.gsi.LDAPConnector.connectLdap(LDAPConnector.java:349)
at oracle.ldap.odip.gsi.ActiveChgReader.initialise(ActiveChgReader.java:178)
...<etc>...
Caused By: javax.naming.AuthenticationException: [LDAP: error code 49 - 80090308: LdapErr: DSID-0C090334, comment: AcceptSecurityContext error, data 533, vece ]
at com.sun.jndi.ldap.LdapCtx.mapErrorCode(LdapCtx.java:3067)
at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:3013)
...<etc>...
at org.quartz.core.JobRunShell.run(JobRunShell.java:202)
at org.quartz.simpl.SimpleThreadPool$WorkerThread.run(SimpleThreadPool.java:529)
>
<Aug 11, 2017 3:20:58 PM > <Error> <oracle.dip.<PROFILE_NAME>> <DIP-10008> <error in mapping engine <PROFILE_NAME> .>
<Aug 11, 2017 3:20:58 PM > <Error> <oracle.dip> <BEA-000000> <Connection to LDAP server failed - Check configuration of DIP server.>
<Aug 11, 2017 3:20:58 PM > <Error> <oracle.dip.<PROFILE_NAME>> <DIP-10007> <error in execution of Agent thread: ADtoOID
ODIException: Invalid Credentials
at oracle.ldap.odip.gsi.LDAPConnector.connectLdap(LDAPConnector.java:349)
at oracle.ldap.odip.gsi.ActiveChgReader.initialise(ActiveChgReader.java:178)
...<etc>...
Caused By: javax.naming.AuthenticationException: [LDAP: error code 49 - 80090308: LdapErr: DSID-0C090334, comment: AcceptSecurityContext error, data 533, vece ]
at com.sun.jndi.ldap.LdapCtx.mapErrorCode(LdapCtx.java:3067)
at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:3013)
...<etc>...
at org.quartz.core.JobRunShell.run(JobRunShell.java:202)
at org.quartz.simpl.SimpleThreadPool$WorkerThread.run(SimpleThreadPool.java:529)
>
<Aug 11, 2017 3:20:58 PM > <Error> <oracle.dip.<PROFILE_NAME>> <DIP-10008> <error in mapping engine <PROFILE_NAME> .>
Example 10g bootstrap.trc error:
LDAP AuthenticationException javax.naming.AuthenticationException: [LDAP: error code 49 - 80090308: LdapErr: DSID-0C09030B, comment: Acceptror, data 775, v893]
[LDAP: error code 49 - 80090308: LdapErr: DSID-0C09030B, comment: AcceptSecurityContext error, data 775, v893]
[LDAP: error code 49 - 80090308: LdapErr: DSID-0C09030B, comment: AcceptSecurityContext error, data 775, v893]
Example 10g AactiveChgImp.trc error:
[LDAP: error code 49 - 80090308: LdapErr: DSID-0C090334, comment: AcceptSecurityContext error, data 775, vece
hodcbarntest:Error in Mapping EngineODIException: DIP_GEN_AUTHENTICATION_FAILURE
javax.naming.AuthenticationException: [LDAP: error code 49 - 80090308: LdapErr: DSID-0C090334, comment: AcceptSecurityContext error, data 775, vece
hodcbarntest:Error in Mapping EngineODIException: DIP_GEN_AUTHENTICATION_FAILURE
javax.naming.AuthenticationException: [LDAP: error code 49 - 80090308: LdapErr: DSID-0C090334, comment: AcceptSecurityContext error, data 775, vece
10g bootstrap example:
dipassistant bootstrap -port <port> -h <hostname> -profile <profile> -dn cn=orcladmin -passwd <password>
-----------------------------------------------
Bootstrapping in progress.....
Bootstrapping completed.
#entries read ..................... 0
#entries filtered ................. 0
#entries ignored .................. 0
#successfully processed entries ... 0
#failures ......................... 0
Please see the log file for more information.
-----------------------------------------------
Updating the profile's last change number ..... Done.
dipassistant ERROR: DIP_GEN_AUTHENTICATION_FAILURE
dipassistant bootstrap -port <port> -h <hostname> -profile <profile> -dn cn=orcladmin -passwd <password>
-----------------------------------------------
Bootstrapping in progress.....
Bootstrapping completed.
#entries read ..................... 0
#entries filtered ................. 0
#entries ignored .................. 0
#successfully processed entries ... 0
#failures ......................... 0
Please see the log file for more information.
-----------------------------------------------
Updating the profile's last change number ..... Done.
dipassistant ERROR: DIP_GEN_AUTHENTICATION_FAILURE
Changes
Cause
To view full details, sign in with your My Oracle Support account. |
|
Don't have a My Oracle Support account? Click to get started! |
In this Document
| Symptoms |
| Changes |
| Cause |
| Solution |
| References |