ORA-20001 and ORA-31202 When Creating a User in EBS With Custom DIT (Doc ID 1311294.1)

Last updated on MAY 19, 2017

Applies to:

Oracle E-Business Suite Technology Stack - Version 12.1.2 to 12.1.3 [Release 12.1]
Oracle Application Object Library - Version 12.0.6 to 12.1.3 [Release 12 to 12.1]
Information in this document applies to any platform.
***Checked for relevance on 19-May-2017***

Symptoms

On : 12.1.x version,

When attempting to create a user in EBS that should be created in a custom DIT, the following error occurs.

ERROR
-----------------------
Unable to call fnd_ldap_wrapper.create_user due to the following reason:
ORA-20001: Unabled to call fnd_ldap_wrapper.create_user due to the following reason:
An unexpected error occurred. Please contact your system administrator


also the following error is seen in FND_LOG_MESSAGES

fnd.plsql.oid.fnd_ldap_user.create_user: 4 ORA-31202: DBMS_LDAP: LDAP client/server error: Insufficient access


The issue can be reproduced at will with the following steps:
1. Register Apps with OID to inlcude Apps to OID provisioning type
2. Register a custom DIT using

execute fnd_oid_plug.setPlugin(p_default_user_repository =>'<new container entry>');
as per 'Customizing Directory Information Tree (DIT) and Relative Distinguished Name (RDN)' section from Oracle® Applications System Administrator's Guide - Security Release 12

3. Create any user as system administrator in User Define form

BUSINESS IMPACT
-----------------------
The issue has the following business impact:
Due to this issue, users cannot be created from Apps to OID.

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms