My Oracle Support Banner

OVD 11g Not Returning Ismemberof Attribute (Doc ID 1555128.1)

Last updated on AUGUST 30, 2023

Applies to:

Oracle Virtual Directory - Version 11.1.1.6.0 and later
Information in this document applies to any platform.

Symptoms

Ldapsearch on a Join Adapter does not return all isMemberOf attributes when using scope of base.

Example:

Configure 2 LDAP (ODSEE) adapters and one Join.

Output from ODSEE host1 adapter
--------------------------------------------------------
ldapsearch -h <OVD HOSTNAME> -p <PORT> -D cn=orcladmin -w <PASSWORD> -b "cn=<USERNAME>,dc=<host1odsee>,dc=<COMPANY>,dc=com" -s sub "objectclass=*" ismemberof
cn=<USERNAME>,dc=<host1odsee>,dc=<COMPANY>,dc=com
ismemberof=cn=group1onhost1,dc=<COMPANY>,dc=com
ismemberof=cn=group2onhost1,dc=<COMPANY>,dc=com


Output from ODSEE host2 adapter
----------------------------------------------------------
 ldapsearch -h <OVD HOSTNAME> -p <PORT> -D cn=orcladmin -w <PASSWORD> -b "cn=<USERNAME>,dc=host2odsee,dc=<COMPANY>,dc=com" -s sub "objectclass=*" ismemberof
cn=<USERNAME>,dc=host2ODSEE,dc=<COMPANY>,dc=com
ismemberof=cn=group1onhost2,dc=odsee,dc=com


Output from JOIN  (Same results with and without forkjoin plugin) -- ISSUE reproduced
---------------------------------------------------------------------------------------------------------------------------------
SCOPE of BASE: (only returns values from primary)

 ldapsearch -h <OVD HOSTNAME> -p <PORT> -D cn=orcladmin -w <PASSWORD> -b "cn=<USERNAME>,dc=odseejoin,dc=<COMPANY>,dc=com" -s base "objectclass=*" ismemberof
cn=<USERNAME>,dc=odseejoin,dc=<COMPANY>,dc=com
ismemberof=cn=group1onhost1,dc=odsee,dc=com
ismemberof=group2onhost1,dc=odsee,dc=com


SCOPE OF SUB (returns expected values)

 ldapsearch -h <HOSTNAME> -p <PORT> -D cn=orcladmin -w <PASSWORD> -b "cn=<USERNAME>,dc=odseejoin,dc=<COMPANY>,dc=com" -s sub "objectclass=*" ismemberof
cn=<USERNAME>,dc=odseejoin,dc=<COMPANY>,dc=com
ismemberof=cn=group1onhost1,dc=odsee,dc=com
ismemberof=group2onhost1,dc=odsee,dc=com
ismemberof=cn=group1onhost2,dc=odsee,dc=com

 

TO configure OVD so that ismemberof is a viewable and searchable attribute

Changes

 

Cause

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!

In this Document
Symptoms
Changes
Cause
Solution
References


My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.