OID 10g Hangs If a User Is Created With Attribute pwdpolicysubentry

(Doc ID 472134.1)

Last updated on SEPTEMBER 21, 2016

Applies to:

Oracle Internet Directory - Version to [Release 10gR3]
Information in this document applies to any platform.


OID hangs if a new user is created and the attribute pwdpolicysubentry is included. This attribute is used to specify that a custom password policy is in use for a user entry.

Example using an LDIF file and ldapadd:
The following LDIF file shows the attribute pwdpolicysubentry that is being assigned to the user "testuser":

dn: cn=testuser,cn=Users,dc=us,dc=oracle,dc=com
objectclass: top
objectclass: person
objectclass: organizationalPerson
objectclass: inetOrgPerson
objectclass: orcluserV2
objectclass: orcluser
cn: testuser
sn: testuser
uid: testuser
mail: testuser@oracle.com
pwdpolicysubentry: cn=Test Custom Policy, cn=pwdPolicies, cn=Common,
userpassword: test123

Adding this entry to OID hangs, and a subsequent attempt bind is no longer successful:

$ORACLE_HOME/bin/ldapbind -h oidserver -p 389
bind successful

$ORACLE_HOME/bin/ldapadd -h oidserver -p 389 -D cn=orcladmin -w welcome1 -v -f create_user.ldif
--> this hangs

$ORACLE_HOME/bin/ldapbind -h oidserver -p 389
--> this hangs

After restarting the server, an ldapbind is successful again.

Example using Oracle Directory Manager:

  1. Use the Create Like option to create a new user entry.
  2. Add attribute pwdpolicysubentry.
  3. An ldapbind hangs after this.
  4. In the oidldapd log, the following error is seen:

    sgslunlListen: Bind failed (port=389), OS error=(98)
  5. After restarting the server, an ldapbind is successful again.




Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms