My Oracle Support Banner

OUD11g/12c- Virtual Static Group Errors: Result=32 Message - Group Doesn't Exist (Doc ID 2400228.1)

Last updated on FEBRUARY 20, 2019

Applies to:

Oracle Unified Directory - Version and later
Information in this document applies to any platform.


On : version, Configuration

An entry is a member of a static virtual group in Suffix A and the same entry is also a member of dynamic group in suffix B.

When running ldapsearch for groups on suffix B for that member, OUD is looking for the static virtual group entry in suffix B backend.

In this case OUD throws "No Such Entry (32). "


SEARCH conn=6256073 op=2 msgID=3 base="cn=dpool1,ou=memberPeople," scope=base filter="(|(objectclass=ePerson)(objectclass=Person))" attrs="objectClass"
SEARCH RES conn=6256073 op=2 msgID=3 result=0 nentries=1 etime=21
SEARCH conn=6256073 op=3 msgID=4 base="SECAUTHORITY=DEFAULT9" scope=sub filter="(|(member=cn=dpool,ou=memberPeople,,ou=memberPeople," attrs="1.1"
SEARCH RES conn=6256073 op=3 msgID=4 result=32 message="The search base entry 'cn=mailoptin,ou=groups,' does not exist" nentries=0 etime=3

Working isMemberOf Search example:

ldapsearch -p 2389 -D "cn=directory manager" -w <PASSWORD> -b "cn=dpool" ismemberof

Successful Result:
dn: cn=dpool,ou=memberPeople,
 ismemberof: cn=number1,ou=groups,
 ismemberof: cn=number2,ou=groups,
 ismemberof: cn=admins,cn=SecurityGroups,secAuthority=default9
 ismemberof: cn=number3,ou=groups,
 ismemberof: cn=number4,ou=groups,
 ismemberof: cn=mailoptin,ou=groups,
 ismemberof: cn=number5,ou=groups,
 ismemberof: cn=someMembers,ou=groups,
 ismemberof: cn=someMembers2,ou=groups,

Working group search:

ldapsearch -p 2389 -D "cn=directory manager" -w <PASSWORD> -b "" "(|(member=cn=dpool,ou=memberPeople,,ou=memberPeople," dn

Successful Result:
dn: cn=someMembers,ou=groups,
dn: cn=someMembers2,ou=groups,
dn: cn=number5,ou=groups,
dn: cn=mailoptin,ou=groups,


Failing base DN secauthority=default9 search when member DN is under a different suffix ( from the suffix that contains the group (secauthority=default9) with the member:

ldapsearch -p 2389 -D "cn=directory manager" -w <PASSWORD>  -b "secauthority=default9" "(|(member=cn=dpool,ou=memberPeople,,ou=memberPeople," dn
SEARCH operation failed
Result Code: 32 (No Such Entry)
Additional Information: The search base entry 'cn=mailoptin,ou=groups,' does not exist

Expected Result would return the DN of the group even though the suffix of that group differs from the suffix where the member entry exists:

dn: cn=admins,cn=SecurityGroups,secAuthority=default9





To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!

In this Document

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.