libOVD Connection Not Reuse/Close When User Entered Invalid paswd "Error No LDAP connection available to process request"
(Doc ID 2337935.1)
Last updated on JUNE 03, 2024
Applies to:
Oracle Virtual Directory - Version 11.1.1.7.0 and laterInformation in this document applies to any platform.
Symptoms
Environment run into "Error No LDAP connection available to process request " at random. Debugging the issue, we found that when user entered invalid paswd, the connection to LDAP is not reused/terminated according to OAM LDAP Identity Store idle timeout ( 2 minutes).
For this, ldap connection (for bad paswd use case) OAM Identity Store is not reuse connection, and terminates those after 3 minutes:
Below is excerpt from logs:
[27/Jun/2017:18:26:14 -0500] connection=xxxx op=-1 msgId=-1 - fd=81 slot=81 LDAPS connection from <IP_ADDRESS>>:<PORT> to <IP_ADDRESS>>
[27/Jun/2017:18:26:14 -0500] connection=xxxx op=0 msgId=1 - BIND dn="uid=<USERNAME1>,ou=People,o=<COMPANY>" method=128 version=3
[27/Jun/2017:18:26:14 -0500] connection=xxxx op=0 msgId=1 - RESULT err=0 tag=97 nentries=0 etime=0.015000 dn="uid=<USERNAME1>,ou=People,o=<COMPANY>"
[27/Jun/2017:18:26:14 -0500] connection=xxxx op=1 msgId=2 - SRCH base="ou=People,o=<COMPANY>" scope=2 filter="(&(objectClass=inetorgpearson)(uid=<USERNAME2>))" attrs="uid mail sn description givenName telephoneNumber objectClass displayName nsUniqueId"
[27/Jun/2017:18:26:14 -0500] connection=xxxx op=1 msgId=2 - RESULT err=0 tag=101 nentries=1 etime=0.001000
[27/Jun/2017:18:26:14 -0500] connection=xxxx op=2 msgId=3 - BIND dn="uid=<USERNAME2>,ou=People,o=<COMPANY>" method=128 version=3
[27/Jun/2017:18:26:14 -0500] connection=xxxx op=2 msgId=3 - RESULT err=49 tag=97 nentries=0 etime=0.000000
[27/Jun/2017:18:29:14 -0500] connection=xxxx op=3 msgId=4 - UNBIND
[27/Jun/2017:18:29:14 -0500] connection=xxxx op=3 msgId=-1 - closing from <IP_ADDRESS>:<PORT> - U1 - Connection closed by unbind client -
[27/Jun/2017:18:29:15 -0500] connection=xxxx op=-1 msgId=-1 - closed.
Added, initial like workarround in OAM $DOMAIN_HOME/config/fmwconfig/oam-config.xml in section for identity store line like this
example section:
<Setting Name="MAX_CONNECTIONS" Type="xsd:integer">20</Setting>
<Setting Name="MIN_CONNECTIONS" Type="xsd:integer">5</Setting>
<Setting Name="SearchTimeLimit" Type="xsd:integer">0</Setting>
<Setting Name="socket.readtimeout" Type="xsd:String">65000</Setting>
After this connection is terminated after 65 seconds, still not being reuse. In current case this is happening only for bad paswd,
for good paswd, connection is reuse and terminated according to setup.
Cause
To view full details, sign in with your My Oracle Support account. |
|
Don't have a My Oracle Support account? Click to get started! |
In this Document
Symptoms |
Cause |
Solution |
References |