OUD 12c Virtual Static Group Errors: Result=32 Message - Group Doesn't Exist

(Doc ID 2400228.1)

Last updated on JUNE 13, 2018

Applies to:

Oracle Unified Directory - Version 12.2.1.3.0 and later
Information in this document applies to any platform.

Symptoms

On : 12.2.1.3.0 version, Configuration

An entry is a member of a static virtual group in Suffix A and the same entry is also a member of dynamic group in suffix B.

When we perform ldapsearch for groups on suffix B for that member, OUD is looking for the static virtual group entry in suffix B backend. And it fails
because the static virtual group entry is present in suffix A (backend A).

In this case OUD throws  "No Such Entry (32). "

ERROR
-----------------------
SEARCH conn=6256073 op=2 msgID=3 base="cn=dpool1,ou=memberPeople,o=example.com" scope=base filter="(|(objectclass=ePerson)(objectclass=Person))" attrs="objectClass"
SEARCH RES conn=6256073 op=2 msgID=3 result=0 nentries=1 etime=21
SEARCH conn=6256073 op=3 msgID=4 base="SECAUTHORITY=DEFAULT9" scope=sub filter="(|(member=cn=dpool,ou=memberPeople,o=example.com)(uniqueMember=cn=dpool,ou=memberPeople,o=example.com))" attrs="1.1"
SEARCH RES conn=6256073 op=3 msgID=4 result=32 message="The search base entry 'cn=mailoptin,ou=groups,o=example.com' does not exist" nentries=0 etime=3

Working isMemberOf Search example:

 

ldapsearch -p 2389 -D "cn=directory manager" -b o=o=example.com "cn=dpool" ismemberof

Successful Result:
dn: cn=dpool,ou=memberPeople,o=example.com
 ismemberof: cn=number1,ou=groups,o=o=example.com
 ismemberof: cn=number2,ou=groups,o=o=example.com
 ismemberof: cn=admins,cn=SecurityGroups,secAuthority=default9
 ismemberof: cn=number3,ou=groups,o=o=example.com
 ismemberof: cn=number4,ou=groups,o=o=example.com
 ismemberof: cn=mailoptin,ou=groups,o=o=example.com
 ismemberof: cn=number5,ou=groups,o=o=example.com
 ismemberof: cn=someMembers,ou=groups,o=o=example.com
 ismemberof: cn=someMembers2,ou=groups,o=o=example.com

Working o=example.com group search:

ldapsearch -p 2389 -D "cn=directory manager" -w PASSWORD -b "o=example.com" "(|(member=cn=dpool,ou=memberPeople,o=example.com)(uniqueMember=cn=dpool,ou=memberPeople,o=example.com))" dn

Successful Result:
dn: cn=someMembers,ou=groups,o=example.com
dn: cn=someMembers2,ou=groups,o=example.com
dn: cn=number5,ou=groups,o=example.com
dn: cn=mailoptin,ou=groups,o=example.com

Failing secauthority=default9 search

ldapsearch -p 2389 -D "cn=directory manager" -w PASSWORD  -b "secauthority=default9" "(|(member=cn=dpool,ou=memberPeople,o=example.com)(uniqueMember=cn=dpool,ou=memberPeople,o=example.com))" dn

 

Expected Result:
dn: cn=admins,cn=SecurityGroups,secAuthority=default9

Actual Result:
SEARCH operation failed
Result Code:  32 (No Such Entry)
Additional Information:  The search base entry 'cn=mailoptin,ou=groups,o=example.com' does not exist

 

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms