OUD11g/12c - Database Client "ldapbind" Command is Successful Whereas OUD "ldapsearch" Command for Same User Returns No Entries (nentries=0)
(Doc ID 2346151.1)
Last updated on APRIL 14, 2022
Applies to:Oracle Unified Directory - Version 220.127.116.11.0 and later
Information in this document applies to any platform.
The Command "ldapbind" is Successful but "ldapsearch" seems to be failing since no entries are returned.
For this specific case, the LDAP client is - Siebel LDAP/SSO with OAM - but the issue could occur for any client.
Example of successful ldapbind -
ldapsearch example showing the entry not returned when authenticating as the same user used in ldapbind (above) when searching for a specific user under the suffix dc=<SUFFIX_DN> -
Access log shows BIND successful (BIND RES line with result=0) but SEARCH does not return the entry (SEARCH RES line with result=0 but nentries=0, where nentries value indicates the number of entries returned) -
[10/Jan/2018:15:30:49 +0000] BIND REQ <......> op=0 msgID=1 type=SIMPLE dn="uid=<USER.0>,ou=people,dc=<SUFFIX_DN>" version=3
[10/Jan/2018:15:30:49 +0000] BIND RES <......> op=0 msgID=1 result=0 authDN="uid=<USER.0>,ou=people,dc=<SUFFIX_DN>" etime=4
[10/Jan/2018:15:30:49 +0000] SEARCH REQ <......> op=1 msgID=2 base="dc=<SUFFIX_DN>" scope=sub filter="(uid=<USER.1>)" attrs="dn"
[10/Jan/2018:15:30:49 +0000] SEARCH RES <......> op=1 msgID=2 result=0 nentries=0 etime=3
[10/Jan/2018:15:30:49 +0000] UNBIND REQ <......> op=2 msgID=3
[10/Jan/2018:15:30:49 +0000] DISCONNECT <......> reason="Client Disconnect"
To view full details, sign in with your My Oracle Support account.
Don't have a My Oracle Support account? Click to get started!
In this Document