My Oracle Support Banner

LDAP Error 32 Reported At IDS Layer While Overriding Search Base After PS3 Upgrade (Doc ID 2250954.1)

Last updated on JUNE 04, 2024

Applies to:

Oracle Access Manager - Version 11.1.1.9.0 and later
Oracle Virtual Directory - Version 11.1.1.9.0 and later
Information in this document applies to any platform.

Symptoms

- Use case is the attempt to use authentication modules, to use different search base KEY_SEARCH_BASE_URL
for each application. In OAM 11gR2PS3 it fail. With this setup, in OAM 11gR2PS1 , user authentication works fine as expected.
After upgrade OAM 11gR2PS1 to 11gR2PS3 with the same configuration, user authentication on applications using
different authentication modules plugins breaks

- To understand usecase configuration that worked in 11gR2PS1 there is:
OVDIDStore
User Search Base: ou=<OVD_DOMAIN>,o=com
Group search base: ou=<OVD_DOMAIN>,o=com

Authentication Module
Step UserID, Plugin name: UserIdentificationPlugin
KEY_IDENTITY_STORE_REF: <OVD_IDSTORE>
KEY_SEARCH_BASE_URL: ou=<NEW_DOMAIN>,o=com

> we see indeed here KEY_SEARCH_BASE_URL completely different/not overlap with <OVD_IDSTORE> User Search Base

this worked fine in 11gR2PS1

- 11gR2PS3 uses IDS, which was not the case with 11gR2PS1
the error observed in the log is as follows

[2016-10-24T11:29:34.088+10:00] [<OAM>] [TRACE] [IGF-00003] [oracle.igf.ovd] [tid: [ACTIVE].ExecuteThread: 'xx' for queue:
'weblogic.kernel.Default (self-tuning)'] [userId: <anonymous>] [ecid: <ECID>] [APP: <OAM>]
[SRC_CLASS: com.oracle.ovd.arisid.util.Logger] [SRC_METHOD: fine] No such entity: entity=ou=<NEW_DOMAIN>,o=com op=search mesg=No Such Object LDAP Error 32 : No Such Object

or:

[2017-01-04T15:43:15.854+05:30] [<OAM>] [ERROR] [OAMSSA-20070]
[oracle.oam.user.identity.provider] [tid: [ACTIVE].ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: <anonymous>] [ecid:
<ECID>] [APP: <OAM>] Failure locating user with search base: ou=<NEW_DOMAIN>,o=com.
filter: (uid={0}) and arguments: xxxxx, for idstore oracle.igf.ids.IDSException: No such entity: entity=ou=<NEW_DOMAIN>,o=com op=search mesg=
AdditionalInfo: LDAP Error 32 : No Such Object with exception {4}



Changes

 Upgrade OAM from 11gR2PS1 to 11gR2PS3

Cause

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!

In this Document
Symptoms
Changes
Cause
Solution
References


My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.