My Oracle Support Banner

OVD 11g Users / Groups Not Returned Intermittently. OAM Log: LIBOVD-40066 | javax.naming.OperationNotSupportedException: [LDAP: error code 53 - LDAP Error 53 : [LDAP: error code 12 - 00002040: SvcErr: DSID-03140395, problem 5010 (UNAVAIL_EXTENSION),data 0 (Doc ID 2247299.1)

Last updated on MAY 31, 2024

Applies to:

Oracle Virtual Directory - Version 11.1.1.0 to 11.1.1.9.0
Information in this document applies to any platform.

Symptoms

Intermittently, user groups values are coming as null from Oracle Virtual Directory (OVD) 11g to integrated Oracle Access Manager (OAM).

This issue seems to have started after upgrading OAM from 10.1.4.3 to 11.1.2.3.5.

Cannot reproduce the issue via command line ldapsearch, which always works.

The issue can be easily reproducible via OAM, but it is intermittent, and there are times where OAM works.

The users/groups are either in Microsoft (MS) Active Directory (AD) or on a Database (DB), depending on the DN. However, the issue seems to reproduce when the users/group should be coming from AD.

OAM logs show:

[2017-01-24T12:17:12.920-05:00] [oam_server1] [NOTIFICATION] [LIBOVD-20043] [oracle.ods.virtualization.accesslog] [tid: [ACTIVE].ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: ] [ecid: <ECID>] [APP: oam_server#11.1.2.0.0] [DSID: xxxxx] conn=1 op=206 SRCH base=dc=<COMPANY_NAME>,dc=com scope=sub filter=(&(objectclass=groupofuniquenames)(uniquemember=CN=<USERNAME>,OU=<COUNTRY>,OU=Users,OU=<OU>,dc=<DC>,dc=<COMPANY_NAME>,dc=com)) requestedAttributes=[cn, orclguid, objectclass] sizelimit=0 timelimit=0 typesOnly=false
[2017-01-24T12:17:12.926-05:00] [oam_server1] [WARNING] [LIBOVD-40066] [oracle.ods.virtualization.engine.backend.jndi.adapter1] [tid: [ACTIVE].ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: ] [ecid: <ECID>] [APP: oam_server#11.1.2.0.0] [DSID: xxxxx] Remote Server Failure:<OVD_HOSTNAME>:6501.[[
javax.naming.OperationNotSupportedException: [LDAP: error code 53 - LDAP Error 53 : [LDAP: error code 12 - 00002040: SvcErr: DSID-03140395, problem 5010 (UNAVAIL_EXTENSION), data 0

OVD Logs include:

[2017-01-24T12:14:24.375-05:00] [octetstring] [TRACE:32] [] [com.octetstring.vde.backend.db.mydb.ParseFilterSQL] [tid: 47] [ecid:<ECID>] [SRC_CLASS: com.octetstring.vde.util.VDELogger] [SRC_METHOD: dump] EQUALITY Filter: Objectclass term did not match (inetOrgPerson != groupofuniquenames
[2017-01-24T12:14:24.375-05:00] [octetstring] [TRACE:32] [] [com.octetstring.vde.backend.db.mydb.DBMapper] [tid: 47] [ecid: f5054

[2017-01-24T12:12:46.873-05:00] [octetstring] [WARNING] [OVD-40066] [com.octetstring.vde.backend.jndi.ConnectionHandle] [tid: 53] [ecid: <ECID>] Remote ServerFailure:<AD_HOSTNAME>:636.[[
javax.naming.OperationNotSupportedException: [LDAP: error code 12 - 00002040: SvcErr: DSID-03140395, problem 5010 (UNAVAIL_EXTENSION), data 0
]; remaining name 'dc=<COMPANY_NAME>,dc=com'

 

Changes

 

Cause

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!

In this Document
Symptoms
Changes
Cause
Solution
References


My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.