OVD Views Restrict Browsing Of Schema Information
(Doc ID 803098.1)
Last updated on AUGUST 30, 2023
Applies to:
Oracle Virtual Directory - Version 10.1.4.2 and later Information in this document applies to any platform.
Symptoms
If a DN or ip address is added to a view, and that view is not associated with an adapter, no schema data will be returned to the client when attempting to browse the schema (via JXplorer or other tools) either as that DN or from that ip address.
Example:
Confirm that cn=schema is visible to the OVD admin:
ldapsearch -D "cn=ovdadmin" -w "" -b "cn=schema" -s base "objectclass=*"
In OVD Manager, go to Engine tab > Server tab > Views tab > click Add View > enter a view name
Click "Add DN" and add "cn=ovdadmin". Alternately, click "Add IP" and enter the ip address of the system where the ldapsearch is performed. This will restrict who has access to the adapter in the next step.
Retry the ldapsearch to confirm that the schema is no longer visible:
ldapsearch -D "cn=ovdadmin" -w "" -b "cn=schema" -s base "objectclass=*" search: 2 result: 32 No such object text: LDAP Error 32 : No Such Object
Internally, after OVD completes the bind, it will log a BackendJNDI error as well:
Changes
Cause
To view full details, sign in with your My Oracle Support account.
Don't have a My Oracle Support account? Click to get started!