Deleted Objects In OpenLDAP are not Synchronized in OID (Doc ID 1377818.1)

Last updated on JULY 01, 2016

Applies to:

Oracle Internet Directory - Version 11.1.1.2.0 and later
Information in this document applies to any platform.
***Checked for relevance on 15-May-2013***

Symptoms

On : OID 11.1.1.2.0 version, Directory Integration Platform (DIP)

OpenLDAP and OID synchronization of deleted objects is not working

In the wls_ods1-diagnostic.log you can see something like this:

[2011-11-16T09:32:17.393-05:00] [wls_ods1] [ERROR] [DIP-10007] [oracle.dip.OpenLDAPOIDImport_reconcile] [tid: OpenLDAPOIDImport_reconcile] [userId: <anonymous>] [ecid: 0000JBEtbYT5i^YVLqRL8A1EYji3000000,0] [APP: DIP#11.1.1.2.0] error in execution of Agent thread: OpenLDAPOIDImport[[
null
at oracle.ldap.odip.web.DIPReconBean.execReconciler(DIPReconBean.java:381)
at oracle.ldap.odip.web.DIPReconBean.reconcileData(DIPReconBean.java:318)
at oracle.ldap.odip.web.DIPReconBean.doOneIteration(DIPReconBean.java:297)
at oracle.ldap.odip.web.DIPRecon_a1d654_EOImpl.__WL_invoke(Unknown Source)
at weblogic.ejb.container.internal.SessionRemoteMethodInvoker.invoke(SessionRemoteMethodInvoker.java:40)
at oracle.ldap.odip.web.DIPRecon_a1d654_EOImpl.doOneIteration(Unknown Source)
at oracle.ldap.odip.web.ReconQuartzJobImpl.execute(ReconQuartzJobImpl.java:178)
at org.quartz.core.JobRunShell.run(JobRunShell.java:202)
at org.quartz.simpl.SimpleThreadPool$WorkerThread.run(SimpleThreadPool.java:529)
Caused by: null
at oracle.ldap.odip.reconcile.LDAP2LDAPReconciler.searchDeletedEntries(LDAP2LDAPReconciler.java:278)
at oracle.ldap.odip.reconcile.LDAP2LDAPReconciler.reconcile(LDAP2LDAPReconciler.java:213)
at oracle.ldap.odip.web.DIPReconBean.execReconciler(DIPReconBean.java:371)
... 8 more
Caused by: null
at oracle.ldap.odip.reconcile.LDAP2LDAPReconciler.deleteEntryFromDst(LDAP2LDAPReconciler.java:565)
at oracle.ldap.odip.reconcile.LDAP2LDAPReconciler.compareEntriesAndDelete(LDAP2LDAPReconciler.java:478)
at oracle.ldap.odip.reconcile.LDAP2LDAPReconciler.searchDeletedEntries(LDAP2LDAPReconciler.java:262)
... 10 more
Caused by: javax.naming.NoPermissionException: [LDAP: error code 50 - Insufficient Access Rights]; remaining name 'cn=test2,ou=openldapusers,cn=users,dc=vm,dc=oracle,dc=com'
at com.sun.jndi.ldap.LdapCtx.mapErrorCode(LdapCtx.java:3049)
at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2987)
at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2794)
at com.sun.jndi.ldap.LdapCtx.c_destroySubcontext(LdapCtx.java:844)
at com.sun.jndi.toolkit.ctx.ComponentContext.p_destroySubcontext(ComponentContext.java:653)
at com.sun.jndi.toolkit.ctx.PartialCompositeContext.destroySubcontext(PartialCompositeContext.java:336)
at com.sun.jndi.toolkit.ctx.PartialCompositeContext.destroySubcontext(PartialCompositeContext.java:326)
at javax.naming.InitialContext.destroySubcontext(InitialContext.java:456)
at oracle.ldap.odip.reconcile.LDAP2LDAPReconciler.deleteEntryFromDst(LDAP2LDAPReconciler.java:531)
... 12 more

]]


 

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms