OUD Not Returning Object Classes For Secondary Join Participant (Doc ID 2240267.1)

Last updated on MARCH 20, 2017

Applies to:

Oracle Unified Directory - Version 11.1.2.3.0 and later
Information in this document applies to any platform.

Symptoms

Issue:
You have 2 directories (For Example : OUD1 and OUD2, it can be any LDAP directory like AD or OID etc). And want to join the entries between them via OUD proxy. You create an OUD Proxy directory and configure a join Workflow element. Then perform a ldap search that includes the object classes from the join secondary participant. No data is returned. If we search and return the objectclass attribute it only shows the object classes from the primary. The article used to implement this scenario was "Document:2124838.1 - OUD 11g : How to Create Join Participant(s) Using Join WorkFlow Element With Proxy LDAP WorkFlow Element Which Includes Creation of Remote Data Source / LDAP Server Extension Under Virtualization"

Example : Demonstration with two OUD Directory servers OUD1 and OUD2 and one OUD Proxy server.

 

1. When Primary OUD1 server has custom objectclass=blogger, it is retrieved in OUD proxy via ldapsearch.

OUD2 Secondary
=============
C:\OUD11123\asinst_4\OUD\bat>ldapsearch -h localhost -p 2389 -D "cn=Directory Manager" -w "welcome1" -b "dc=example,dc=com" -s sub "uid=user.5" st l objectclass
dn: uid=user.5,ou=People,dc=example,dc=com
objectclass: top
objectclass: organizationalperson
objectclass: person
objectclass: inetorgperson
st: NJ
l: India

OUD1 Primary
=============
C:\OUD11123\asinst_4\OUD\bat>ldapsearch -h localhost -p 31389 -D "cn=Directory Manager" -w "welcome1 " -b "dc=example,dc=com" -s sub "uid=user.5" st l objectclass
dn: uid=user.5,ou=People,dc=example,dc=com
objectclass: top
objectclass: blogger                 <<---------------------blogger
objectclass Present only on primary
objectclass: organizationalperson
objectclass: person
objectclass: inetorgperson
st: NJ
l: India3

OUD Proxy
=============
C:\OUD11123\asinst_4\OUD\bat>ldapsearch -h localhost -p 4389 -D "cn=Directory Manager" -w "welcome1"-b "dc=example,dc=com" -s sub "uid=user.5" st l objectclass
dn: uid=user.5,ou=People,dc=example,dc=com
joinedentrydn: JP2 : uid=user.5,ou=People,dc=example,dc=com
st: NJ
objectclass: top
objectclass: inetorgperson
objectclass: blogger                               <<---------------------blogger
objectclass Present only on primary, hence retrieved via OUD proxy.
objectclass: organizationalperson
objectclass: person
l: India3
l: India

2. When Secondary OUD server has custom objectclass=blogger, it is not retrieved in OUD proxy via ldapsearch.

Primary OUD1
=============
C:\OUD11123\asinst_4\OUD\bat>ldapsearch -h localhost -p 2389 -D "cn=Directory Manager" -w "welcome1" -b "dc=example,dc=com" -s sub "uid=user.5" st l objectclass
dn: uid=user.5,ou=People,dc=example,dc=com
objectclass: top
objectclass: organizationalperson
objectclass: person
objectclass: inetorgperson
st: NJ
l: India

Secondary OUD2
=============
C:\OUD11123\asinst_4\OUD\bat>ldapsearch -h localhost -p 31389 -D "cn=Directory Manager" -w "welcome1 " -b "dc=example,dc=com" -s sub "uid=user.5" st l objectclass
dn: uid=user.5,ou=People,dc=example,dc=com
objectclass: top
objectclass: blogger           <<---------------------blogger
objectclass Present only on secondary
objectclass: organizationalperson
objectclass: person
objectclass: inetorgperson
st: NJ
l: India3

Proxy OUD
=========
<<---------------------blogger objectclass Present only on secondary, hence NOT retrieved via OUD proxy.------->

C:\OUD11123\asinst_4\OUD\bat>ldapsearch -h localhost -p 4389 -D "cn=Directory Manager" -w "welcome1" -b "dc=example,dc=com" -s sub "uid=user.5" st l objectclass
dn: uid=user.5,ou=People,dc=example,dc=com
joinedentrydn: JP3 : uid=user.5,ou=People,dc=example,dc=com
st: NJ
objectclass: top
objectclass: inetorgperson
objectclass: organizationalperson
objectclass: person
l: India
l: India3
----------------------------------

 

Changes

 

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms