LDAP Directory Information Tree changed and now the user cannot log in

(Doc ID 1562800.1)

Last updated on DECEMBER 15, 2017

Applies to:

Oracle WebCenter Content - Version to [Release 10gR3]
Information in this document applies to any platform.


UCM (WCC) 10g.

External LDAP  Microsoft Active Directory.

Customer created a new Directory Information Tree (DIT) ie dc=new,dc=com and configured the LDAP provider to point to the new DIT

The old DIT was  ie. dc=old,dc=com

Looking at the user storage trace in Content Server, the server output shows the following:
userstorage 06.13 21:39:16.280 IdcServerThread-13 Searching for groups containing user uid=<useridhidden>,ou=People,dc=old,dc=com
userstorage 06.13 21:39:16.281 IdcServerThread-13 Searching for groups based at DN dc=old,dc=com

they already had RetryDefaultUserProvider=true set in the config.cfg so it should be picking up the new DIT which it does but only for ou=Roles

It should pick up the new DIT for ou=People also, but it is not.

User is part of a Workflow.


Changed the LDAP DIT from :


to :




Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms