OUD 11g - Can not Change the User Password by openLDAP ldappasswd Command with NULLPOINTEREXCEPTION (Doc ID 2271964.1)

Last updated on JUNE 05, 2017

Applies to:

Oracle Unified Directory - Version 11.1.2.3.161018 and later
Information in this document applies to any platform.

Symptoms

NullPointerException error occurs when changing the Bind user's own password with ldappasswd command from Linux client.

Note: the ldappasswd command is from OpenLDAP client.

I.E:

# /usr/bin/ldappasswd -h xxx.xxx.xxx.xxx -p 389 -x -D "uid=test00001,ou=users,dc=example,dc=com" -w password -S "uid=test00001,ou=users,dc=example,dc=com"
New password:
Re-enter new password:
Result: Internal (implementation specific) error (80)
Additional info: Worker Thread 1 encountered an uncaught exception while processing operation ExtendedOperation(connID=0, opID=1, oid=1.3.6.1.4.1.4203.1.11.1): NullPointerException (PatternIP.java:426 IP.java:141 IP.java:125 BindRule.java:621 BindRule.java:623 BindRule.java:623 AciBody.java:354 Aci.java:586 Aci.java:597 AciHandler.java:1274 EvaluationContext.java:557 AciHandler.java:2420 AciHandler.java:867 LocalBackendModifyOperation.java:669 LocalBackendWorkflowElement.java:214 WorkflowImpl.java:365 WorkflowTopologyNode.java:130 ModifyOperationBasis.java:619 InternalClientConnection.java:1751 InternalClientConnection.java:1718 PasswordModifyExtendedOperation.java:1065 ...)


<OUD errors log>

category=CORE severity=MILD_ERROR msgID=196716 msg=Worker Thread 1 encountered an uncaught exception while processing operation ExtendedOperation(connID=0, opID=1, oid=1.3.6.1.4.1.4203.1.11.1): NullPointerException (PatternIP.java:426 IP.java:141 IP.java:125 BindRule.java:621 BindRule.java:623 BindRule.java:623 AciBody.java:354 Aci.java:586 Aci.java:597 AciHandler.java:1274 EvaluationContext.java:557 AciHandler.java:2420 AciHandler.java:867 LocalBackendModifyOperation.java:669 LocalBackendWorkflowElement.java:214 WorkflowImpl.java:365 WorkflowTopologyNode.java:130 ModifyOperationBasis.java:619 InternalClientConnection.java:1751 InternalClientConnection.java:1718 PasswordModifyExtendedOperation.java:1065 ...)


At this time, the OUD has the following ACI setting.

I.E:

aci: (targetattr = "*") (version 3.0;acl "notinternet_aci";deny (all)(userdn = "ldap:///anyone") and (ip!="127.0.0.1" and ip!="xxx.xxx.xxx.xxx+255.255.0.0" and ip!="::1");)

If the above ACI not in place, the issue doesn't occur.

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms