OVD 11g Searches to LDAP Backend Groups with Invalid Uniquemember DNs Work, But Fail to OVD with: ldap_search: Invalid DN syntax / additional info: Provided value cannot be parsed as a valid distinguished name.

(Doc ID 1572675.1)

Last updated on JUNE 15, 2016

Applies to:

Oracle Virtual Directory - Version 11.1.1.0 and later
Information in this document applies to any platform.

Symptoms

Oracle Virtual Directory (OVD) 11g, i.e., 11.1.1.6.0.

Searching backend, i.e., Sun/ODSEE LDAP, groups of uniquemembers with invalid DNs via OVD returns error:

ldap_search: Invalid DN syntax
ldap_search: additional info: Provided value cannot be parsed as a valid distinguished name.

Whereas searching the backend directly returns all uniquemembers without errors.

Steps to reproduce:

1. Create an ldap adapter in OVD to the Sun ldap.

2. Create a couple of uniquemember ldif files with invalid DNs such as, for example:

dn: cn=testgroup,dc=mycompany,dc=com
changetype: modify
add: uniquemember
uniquemember: uid=TEST123+USERxyz,dc=mycompany,dc=com

And add them to the Sun ldap with ldapmodify.

3. Searching Sun directly returns all members with valid and invalid DNs and without errors:



Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms