OID 10g Allowed Incorrect Value For ldapmoddn Command, Now The Entry DN Is Incorrect / Invalid; Unable To Ldapsearch Or ldifwrite From User Container; Unable To Select/Modify/Delete Any Of The User Container Entries With Oidadmin Or Ldap Tools (Doc ID 402278.1)

Last updated on MARCH 08, 2017

Applies to:

Oracle Internet Directory - Version 9.0.4 to 10.1.2 [Release 10gR1 to 10gR2]
Information in this document applies to any platform.

Symptoms

Scenario:

Used ldapmoddn to rename or move the DN of a user in OID (Oracle Internet Directory) 10g ldap server, but accidentally specified the a full new DN in the command on the last part instead of just the RDN value.

For example, if coding with dbms_ldap.modrdn2_s, a snippet of code segment could have been:

uidx:='SMITH.JOHN.PAUL.1273946086';
NewUID:='SMITH.JOHN.1273946086';
userDN := 'cn='||UIDx||',cn=Users,dc=mycompany,dc=com';
NewrDN := 'cn='||NewUID||',cn=Users,dc=mycompany,dc=com';
retval := DBMS_LDAP.modrdn2_s(my_session,userDN,NewrDN,0);

 

Or, if using ldapmoddn the commands could have been:

ldapmoddn -h <oid hostname> -p <port> -D cn=orcladmin -w <password> –b "cn=oldusername,cn=parts,cn=others,cn=users,dc=mycompany,dc=com" -R "cn=newusername,cn=parts,cn=others,cn=users,dc=mycompany,dc=com" -r
Or:
ldapmoddn -h <oid hostname> -p <port> -D "cn=orcladmin" -w password –b "cn=username,cn=parts,cn=others,cn=users,dc=mycompany,dc=com" -N "cn=Parts1,cn=Others,cn=Users,dc=mycompany,dc=com"

 

Now this entry's DN is invalid / incorrect, showing as follows:

cn=username,cn=Parts,cn=Others,cn=Users,dc=mycompany,dc=com,cn=Parts,cn=Others,cn=Users,dc=mycompany,dc=com


Attemps to delete the user via ldap tools fail, i.e., with ldapdelete:


Additional potential symptoms:

Unable to ldapsearch the cn=users,dc=mycompany,dc=com container, it returns error:
ldap_search: DSA is unwilling to perform
ldap_search: additional info: Function Not Implemented

Able to only ldapsearch -s base the parent container cn=Users.
Able to view the entry(ies) in oidadmin but cannot select, modify, or delete it(them).

Attempt to edit entry in oidadmin returns:
An internal error has occured
java.lang.nullPointerException

Attempt to update or delete the user entry in oiddas returns:
LDAP: error_code 32 - Entry to be deleted not found.

An attempt to run ldifwrite on the cn=users container returns error:
ORA-24345 null or truncated value.

Changes

 

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms