DIP AD to OID Synchronization Fails with ODIException: Invalid Credentials / javax.naming.AuthenticationException: [LDAP: error code 49 ... (Doc ID 1327108.1)

Last updated on AUGUST 15, 2017

Applies to:

Oracle Internet Directory - Version 9.0.4 and later
Information in this document applies to any platform.

Symptoms

Microsoft (MS) Active Directory (AD) to Oracle Internet Directory (OID) Directory Integration Platform (DIP) synchronization and/or bootstrap fails with DIP_GEN_AUTHENTICATION_FAILURE followed by LDAP: error code 49.


Example 11g wls_ods1-diagnostic.log error:

<Aug 11, 2017 3:20:58 PM BST> <Error> <oracle.dip> <BEA-000000> <maximum LDAP connection retry count reached>
<Aug 11, 2017 3:20:58 PM BST> <Error> <oracle.dip> <BEA-000000> <Connection to LDAP server failed - Check configuration of DIP server.>
<Aug 11, 2017 3:20:58 PM BST> <Error> <oracle.dip.ADtoOID> <DIP-10007> <error in execution of Agent thread: ADtoOID
ODIException: Invalid Credentials
at oracle.ldap.odip.gsi.LDAPConnector.connectLdap(LDAPConnector.java:349)
at oracle.ldap.odip.gsi.ActiveChgReader.initialise(ActiveChgReader.java:178)

...<etc>...
Caused By: javax.naming.AuthenticationException: [LDAP: error code 49 - 80090308: LdapErr: DSID-0C090334, comment: AcceptSecurityContext error, data 533, vece ]
at com.sun.jndi.ldap.LdapCtx.mapErrorCode(LdapCtx.java:3067)
at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:3013)
...<etc>...
at org.quartz.core.JobRunShell.run(JobRunShell.java:202)
at org.quartz.simpl.SimpleThreadPool$WorkerThread.run(SimpleThreadPool.java:529)
>
<Aug 11, 2017 3:20:58 PM BST> <Error> <oracle.dip.ADtoOID> <DIP-10008> <error in mapping engine ADtoOID .>


Example 10g bootstrap.trc error:

LDAP AuthenticationException javax.naming.AuthenticationException: [LDAP: error code 49 - 80090308: LdapErr: DSID-0C09030B, comment: Acceptror, data 775, v893]
[LDAP: error code 49 - 80090308: LdapErr: DSID-0C09030B, comment: AcceptSecurityContext error, data 775, v893]

Example 10g AactiveChgImp.trc error:

[LDAP: error code 49 - 80090308: LdapErr: DSID-0C090334, comment: AcceptSecurityContext error, data 775, vece
hodcbarntest:Error in Mapping EngineODIException: DIP_GEN_AUTHENTICATION_FAILURE
javax.naming.AuthenticationException: [LDAP: error code 49 - 80090308: LdapErr: DSID-0C090334, comment: AcceptSecurityContext error, data 775, vece



Changes

 

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms