Skip Headers

Oracle Internet Directory Administrator's Guide
Release 9.0.2

Part Number A95192-01
Go To Documentation Library
Home
Go To Product List
Solution Area
Go To Table Of Contents
Contents
Go To Index
Index

Go to previous page Go to next page

H
Troubleshooting

This appendix explains typical problems that you could encounter while running or installing Oracle Internet Directory. It contains these topics:

Installation Errors

During installation and configuration of the Oracle9i database server, you must select the character set UTF-8. If you select any other character set, the directory server will not function properly.

Administration Error Messages and Causes

This section contains a list of all the Oracle directory server error messages that you can encounter. Each message is followed by its most probable causes.

This section contains these topics:

Oracle Database Server Error Due to Schema Modifications

ORA-1562

Cause: If you attempt to add more schema components than can fit in the rollback segment space, you will encounter this error and the modifications will not commit. To solve this, increase the size of the rollback segments in the database server.

Standard Error Messages Returned from Oracle Directory Server

The following are standard error messages. Oracle Internet Directory also returns other messages listed and described in "Additional Error Messages".

00--LDAP_SUCCESS

Cause: The operation was successful.

01--LDAP_OPERATIONS_ERROR

Cause: General errors encountered by the server when processing the request.

02--LDAP_PROTOCOL_ERROR

Cause: The client request did not meet the LDAP protocol requirements, such as format or syntax. This can occur in the following situations:

  • Server encounters a decoding error while parsing the incoming request

  • The request is an add or modify request that specifies the addition of an attribute type to an entry but no values specified

  • Error reading SSL credentials

  • An unknown type of modify operation is specified (other than LDAP_MOD_ADD, LDAP_MOD_DELETE, and LDAP_MOD_REPLACE)

  • Unknown search scope

03--LDAP_TIMELIMIT_EXCEEDED

Cause: Search took longer than the time limit specified. If you have not specified a time limit for the search, Oracle Internet Directory uses a default time limit of one hour.

04--LDAP_SIZELIMIT_EXCEEDED

Cause: More entries match the search query than the size limit specified. If you have not specified a size limit for the search, Oracle Internet Directory uses a default size limit.

05--LDAP_COMPARE_FALSE

Cause: Presented value is not the same as the one in the entry.

06--LDAP_COMPARE_TRUE

Cause: Presented value is same as the one in the entry.

07--LDAP_STRONG_AUTH_NOT_SUPPORTED

Cause: Bind method is not supported by the server.

08--LDAP_STRONG_AUTH_REQUIRED

Cause: Strong authentication is required. Oracle Internet Directory does not return this message at the present time.

09--LDAP_PARTIAL_RESULTS

Cause: Server returned a referral.

10--LDAP_REFERRAL

Cause: Server returned a referral.

11--LDAP_ADMINLIMIT_EXCEEDED

Cause: Oracle Internet Directory does not return this message at the present time.

12--LDAP_UNAVAILABLE_CRITICALEXTENSION

Cause: Specified request is not supported

16--LDAP_NO_SUCH_ATTRIBUTE

Cause: Attribute does not exist in the entry specified in the request.

17--LDAP_UNDEFINED_TYPE

Cause: Specified attribute type is undefined in the schema.

18--LDAP_INAPPROPRIATE_MATCHING

Cause: Specified matching rule is inappropriate for the attribute type. Oracle Internet Directory does not return this message at the present time.

19--LDAP_CONSTRAINT_VIOLATION

Cause: The value in the request violated certain constraints.

20--LDAP_TYPE_OR_VALUE_EXISTS

Cause: Duplicate values specified for the attribute.

21--LDAP_INVALID_SYNTAX

Cause: Specified attribute syntax is invalid. In a search, the filter syntax is invalid.

32--LDAP_NO_SUCH_OBJECT

Cause: The base specified for the operation does not exist.

33--LDAP_ALIAS_PROBLEM

Cause: Oracle Internet Directory does not return this message at the present time.

34--LDAP_INVALID_DN_SYNTAX

Cause: Error in the DN syntax.

35--LDAP_IS_LEAF

Cause: The entry is a leaf (terminal entry). Oracle Internet Directory does not return this message at the present time.

36--LDAP_ALIAS_DEREF_PROBLEM

Cause: Oracle Internet Directory does not return this message at the present time.

48--LDAP_INAPPROPRIATE_AUTH

Cause: Oracle Internet Directory does not return this message at the present time.

49--LDAP_INVALID_CREDENTIALS

Cause: Bind failed because the credentials are not correct.

50--LDAP_INSUFFICIENT_ACCESS

Cause: The client does not have access to perform this operation.

51--LDAP_BUSY

Cause: Server cannot accept any more client connections. Oracle Internet Directory does not return this message at the present time.

52--LDAP_UNAVAILABLE

Cause: Cannot contact the server at all. Oracle Internet Directory does not return this message at the present time.

53--LDAP_UNWILLING_TO_PERFORM

Cause: General error, or server is in read-only mode.

54--LDAP_LOOP_DETECT

Cause: Oracle Internet Directory does not return this message at the present time.

64--LDAP_NAMING_VIOLATION

Cause: Oracle Internet Directory does not return this message at the present time.

65--LDAP_OBJECT_CLASS_VIOLATION

Cause: A change to the entry violates the objectclass definition.

66-- LDAP_NOT_ALLOWED_ON_NONLEAF

Cause: The entry to be deleted has children.

67--LDAP_NOT_ALLOWED_ON_RDN

Cause: Cannot perform the operation on RDN attributes--for example, you cannot delete the RDN attribute of the entry.

68--LDAP_ALREADY_EXISTS

Cause: Duplicate ADD condition.

69--LDAP_NO_OBJECT_CLASS_MODS

Cause: Oracle Internet Directory does not return this message at the present time.

70--LDAP_RESULTS_TOO_LARGE

Cause: Oracle Internet Directory does not return this message at the present time.

80--LDAP_OTHER

Cause: Oracle Internet Directory does not return this message at the present time.

81--LDAP_SERVER_DOWN

Cause: Can't contact LDAP server. This message is returned from the SDK.

82--LDAP_LOCAL_ERROR

Cause: The client encountered an internal error. This message is returned from the client SDK.

83--LDAP_ENCODING_ERROR

Cause: The client encountered an error in encoding the request. This message is returned from the SDK.

84--LDAP_DECODING_ERROR

Cause: The client encountered an error in decoding the request. This message is returned from the SDK.

85--LDAP_TIMEOUT

Cause: Client encountered the time-out specified for the operation. This message is returned from the SDK.

86--LDAP_AUTH_UNKNOWN

Cause: Authentication method is unknown to the client SDK.

87--LDAP_FILTER_ERROR

Cause: Bad search filter

88--LDAP_USER_CANCELLED

Cause: User cancelled operation

89--LDAP_PARAM_ERROR

Cause: Bad parameter to an LDAP routine

90--LDAP_NO_MEMORY

Cause: Out of memory

Additional Error Messages

These messages do not display error codes.

The Oracle Internet Directory application replaces the parameter tag seen in some of the messages below with the appropriate run-time value.

%s attribute not found.

Cause: The particular attribute type is not defined in the schema.

<parameter> not found for attribute <parameter>.

Cause: Value not found in the attribute. (ldapmodify)

Admin domain does not contain schema information for objectclass <parameter>.

Cause: The object class specified in the request is not present in the schema.

Attempted to add a Class with oid <parameter> taken by other class.

Cause: Duplicate object identifier specified. (schema modification)

Attribute <parameter> already in use.

Cause: Duplicate attribute name. (schema modification)

Attribute <parameter> has syntax error.

Cause: Syntax error in the attribute name definition. (schema modification)

Attribute <parameter> is not supported in the schema.

Cause: Attribute not defined. (all operations)

Attribute <parameter> is single valued.

Cause: Attribute is single-valued. (ldapadd & ldapmodify)

Attribute <parameter> not present in the entry.

Cause: This attribute does not exist in the entry. (ldapmodify)

Bad attribute definition.

Cause: Syntax error in attribute definition. (schema modification)

Currently Not Supported

Cause: The version of LDAP request is not supported by this server.

Entry to be deleted not found.

Cause: DN specified in the delete operation not found.

Entry to be modified not found

Cause: The entry specified in the request is not found.

Error encountered while adding <parameter> to the entry

Cause: Returned when modify add operation is invoked. A possible cause is that the system resource is unavailable.

Error encountered while encrypting an attribute value.

Cause: Error in encrypting user password. (all operations)

Error in DN Normalization.

Cause: DN specified is invalid. Syntax error encountered in parsing the DN. (all operations)

Error in hashing <parameter> attribute.

Cause: Error in creating hash entry for the attribute. (schema modification)

Error in hashing <parameter> objectclass.

Cause: Error in creating hash entry for the objectclass. (schema modification)

Error in Schema hash creation.

Cause: Error while creating hash table for schema. (schema modification)

Error replacing <parameter>.

Cause: Error in replacing this attribute. (ldapmodify)

Error while normalizing value for attribute <parameter>.

Cause: Error in normalizing value for the attribute. (all operations)

Failed to find <parameter> in mandatory or optional attribute list.

Cause: Attribute specified does not exist in either the mandatory or optional attribute list as required by the object class(es).

Function Not Implemented

Cause: The feature/request is currently not supported.

INVALID ACI is <parameter>

Cause: The particular ACI you specified in a request is invalid.

Mandatory attribute <parameter> is not defined in Admin Domain <parameter>.

Cause: MUST refers to attribute not defined. (schema modification)

Mandatory Attribute missing.

Cause: The mandatory attribute for the particular entry is missing, as required by the particular object class.

Matching rule, <parameter>, not defined.

Cause: Matching rule not defined in the server. (schema modification)

MaxConn Reached

Cause: The maximum number of concurrent connections to the LDAP server has been reached.

Modifying the Naming attribute for the entry without modifying the DN.

Cause: Cannot modify the naming attributes using ldap_modify. A naming attribute, such as cn is an element in the DN.

New Parent not found.

Cause: New parent specified in modifydn operation does not exist.(ldapmodifydn)

Object already exists.

Cause: Duplicate entry. (ldapadd and ldapmodifydn)

Object ID <parameter> already in use.

Cause: Duplicate object identifier specified. (schema modification)

Objectclass <parameter> already in use. m

Cause: Duplicate Objectclass name. (schema modification)

Objectclass attribute missing.

Cause: The objectclass attribute is missing for this particular entry.

OID <parameter> has syntax error.

Cause: syntax error in the object identifier definition. (schema modification)

One of the attributes in the entry has duplicate value

Cause: You entered two values for the same attribute in the entry you are creating.

Operation not allowed on the <parameter>.

Cause: Operation not allowed on this entry. (modify, add, and delete)

Operation not allowed on the DSE Entry.

Cause: Can't do this operation on DSE entry. (delete)

Optional attribute <parameter> is not defined in Admin Domain <parameter>.

Cause: MAY refers to attribute not defined. (schema modification)

Parent entry not found in the directory.

Cause: Parent entry does not exist. (ldapadd and perhaps ldapmodifydn)

Super object <parameter> is not defined in Admin Domain <parameter>.

Cause: SUP types refer to non-existing class. (schema modification)

Super type undefined.

Cause: SUP type does not exist. (schema modification)

Super user addition not permitted.

Cause: Cannot create super user entry. (ldapadd)

Syntax, <parameter>, not defined.

Cause: Syntax not defined in the server. (schema modification)

The attribute or the value specified in the RDN does not exist in the entry.

Cause: AVA specified as the RDN does not exist in the entry. (ldapadd)

Unknown search scope

Cause: The search scope specified in the LDAP request is not recognized.

Version Not Supported

Cause: The version of the LDAP request is not supported by this server.

Password Policy Violation Error Messages

Table 36-1 contains the error messages that are sent to the client as a result of password policy violations. The error codes are not standard LDAP error codes. They are messages sent as a part of additional information in the LDAP result.

Table 36-1 Password Policy Violation Error Messages
Error Number Exception Comment or Resolution

9000

GSL_PWDEXPIRED_EXCP

Your Password has expired. Please contact the Administrator to change your password.

9001

GSL_ACCOUNTLOCKED_EXCP

Your account is locked. Please contact the Administrator.

9002

GSL_EXPIREWARNING_EXCP

Your Password will expire in pwdexpirewarning seconds. Please change your password now.

9003

GSL_PWDMINLENGTH_EXCP

Your Password must be at least pwdminlength characters long.

9004

GSL_PWDNUMERIC_EXCP

Your Password must contain at least orclpwdalphanumeric numeric characters.

9005

GSL_PWDNULL_EXCP

Your Password cannot be a Null Password.

9006

GSL_PWDINHISTORY_EXCP

Your New Password cannot be the same as your Old Password.

9007

GSL_PWDILLEGALVALUE_EXCP

Your Password cannot be the same as your orclpwdillegalvalues.

9008

GSL_GRACELOGIN_EXCP

Your Password has expired. You have pwdgraceloginlimit Grace logins left.

9050

GSL_ACCTDISABLED_EXCP

Your Account has been disabled. Please contact the administrator.


Go to previous page Go to next page
Oracle
Copyright © 1999, 2002 Oracle Corporation.

All Rights Reserved.
Go To Documentation Library
Home
Go To Product List
Solution Area
Go To Table Of Contents
Contents
Go To Index
Index