OUD11g/12c - Database Client "ldapbind" Command is Successful Whereas OUD "ldapsearch" Command for Same User Returns No Entries (nentries=0)
(Doc ID 2346151.1)
Last updated on MAY 17, 2023
Applies to:
Oracle Unified Directory - Version 11.1.1.5.0 and laterInformation in this document applies to any platform.
Symptoms
The Command "ldapbind" is Successful but "ldapsearch" seems to be failing since no entries are returned.
For this specific case, the LDAP client is - Siebel LDAP/SSO with OAM - but the issue could occur for any client.
Example of successful ldapbind -
bind successful
ldapsearch example showing the entry not returned when authenticating as the same user used in ldapbind (above) when searching for a specific user under the suffix dc=<SUFFIX_DN> -
$
Access log shows BIND successful (BIND RES line with result=0) but SEARCH does not return the entry (SEARCH RES line with result=0 but nentries=0, where nentries value indicates the number of entries returned) -
[10/Jan/2018:15:30:49 +0000] BIND REQ <......> op=0 msgID=1 type=SIMPLE dn="uid=<USER.0>,ou=people,dc=<SUFFIX_DN>" version=3
[10/Jan/2018:15:30:49 +0000] BIND RES <......> op=0 msgID=1 result=0 authDN="uid=<USER.0>,ou=people,dc=<SUFFIX_DN>" etime=4
[10/Jan/2018:15:30:49 +0000] SEARCH REQ <......> op=1 msgID=2 base="dc=<SUFFIX_DN>" scope=sub filter="(uid=<USER.1>)" attrs="dn"
[10/Jan/2018:15:30:49 +0000] SEARCH RES <......> op=1 msgID=2 result=0 nentries=0 etime=3
[10/Jan/2018:15:30:49 +0000] UNBIND REQ <......> op=2 msgID=3
[10/Jan/2018:15:30:49 +0000] DISCONNECT <......> reason="Client Disconnect"
Cause
To view full details, sign in with your My Oracle Support account. |
|
Don't have a My Oracle Support account? Click to get started! |
In this Document
Symptoms |
Cause |
Solution |