OUD 12c - Custom HandleBind Plug-in Bind Fails for Users Under cn=root dns,cn=config: [LDAP: error code 50 - The request control with Object Identifier (OID) "188.8.131.52.2.10.15" cannot be used due to insufficient access rights]
(Doc ID 2699833.1)
Last updated on SEPTEMBER 29, 2022
Applies to:Oracle Unified Directory - Version 184.108.40.206.0 and later
Information in this document applies to any platform.
Oracle Unified Directory (OUD)12c admin user bypasses custom handleBind plug-in.
Clients using several LDAP controls not implemented in OUD (for example admin control 220.127.116.11.2.10.15).
OUD server rejects the user connections with the following message:
To prevent this error, a custom plugin (for Bind and Modify operations) was created that suppresses undesired controls.
This plug in works perfectly with non-root users but not for Bind operation for users created under cn=Root DNs,cn=config (in this case is ds-cfg-alternate-bind-dn: cn=root).
The documentation does not show any restrictions for handleBind and type of users making the requests. Is this a bug or product design?
To view full details, sign in with your My Oracle Support account.
Don't have a My Oracle Support account? Click to get started!
In this Document