My Oracle Support Banner

OUD11g/12c - LdapBind Is Successful But Ldapsearch Is Failing (Doc ID 2346151.1)

Last updated on JANUARY 10, 2018

Applies to:

Oracle Unified Directory - Version to [Release 11g to 12c]
Information in this document applies to any platform.


Ldapbind is successful but Ldapsearch is failing

For this specific case, the LDAP client is - Siebel LDAP/SSO with OAM - but it could occur for any client.

Example of successful ldapbind -

ldapbind -D uid=user.0,ou=people,dc=example,dc=com -w password -p 1389
bind successful

ldapsearch example showing the entry not returned when authenticating as the same user used in ldapbind (above) when searching for a specific user under the suffix dc=example,dc=com -

bash-4.1$ ./ldapsearch -p 1389 -D "uid=user.0,ou=People,dc=example,dc=com" -w password -b "dc=example,dc=com" "uid=user.1" dn


Access log shows BIND successful (BIND RES line with result=0) but SEARCH does not return the entry (SEARCH RES line with result=0 but nentries=0, where nentries value indicates the number of entries returned) -

[10/Jan/2018:15:30:49 +0000] CONNECT conn=16 from= to= protocol=LDAP
[10/Jan/2018:15:30:49 +0000] BIND REQ conn=16 op=0 msgID=1 type=SIMPLE dn="uid=user.0,ou=People,dc=example,dc=com" version=3
[10/Jan/2018:15:30:49 +0000] BIND RES conn=16 op=0 msgID=1 result=0 authDN="uid=user.0,ou=People,dc=example,dc=com" etime=4
[10/Jan/2018:15:30:49 +0000] SEARCH REQ conn=16 op=1 msgID=2 base="dc=example,dc=com" scope=sub filter="(uid=user.1)" attrs="dn"
[10/Jan/2018:15:30:49 +0000] SEARCH RES conn=16 op=1 msgID=2 result=0 nentries=0 etime=3
[10/Jan/2018:15:30:49 +0000] UNBIND REQ conn=16 op=2 msgID=3
[10/Jan/2018:15:30:49 +0000] DISCONNECT conn=16 reason="Client Disconnect"


To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!

In this Document

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.