Uploaded image for project: 'OpenAM'
  1. OpenAM
  2. OPENAM-18005

Insufficient error message to troubleshoot persistent search issue

    XMLWordPrintable

    Details

    • Bug
    • Status: In Progress
    • Major
    • Resolution: Unresolved
    • 6.0.0, 6.0.0.1, 6.0.0.2, 6.0.0.3, 6.0.0.4, 6.0.0.5, 6.5.0, 6.0.0.6, 6.5.0.1, 6.0.0.7, 6.5.1, 6.5.0.2, 6.5.2, 6.5.2.1, 6.5.2.2, 6.5.2.3, 7.0.0, 6.5.3, 7.1.0, 7.0.1, 7.0.2
    • None
    • CTS, idrepo
    • Zulu OpenDJK Zulu11.39+15-CA (build 11.0.7+10-LTS)
      FR DS 7.0.2
      Apache Tomcat 9.0.38
      FR AM 7.0.2
    • Rank:
      1|i0506e:
    • AM Sustaining Sprint 87, AM Sustaining Sprint 88, AM Sustaining Sprint 89
    • 2

      Description

      Bug description

      LDAP persistent search error does not tell which Directory Server is being used

      How to reproduce the issue

      1. Configure FR DS 7.0.2 with AM profiles for config store, CTS, identity store
      2. Configure AM with amster, specify wrong FQDN for identity store
      3. Login to AM console
      4. Try to create user identity subject
      5. Correct FQDN of identity store
      6. Try to create user identity subject again
      Expected behaviour
      IdRepo debug log should show which DS is used for the identity store
      
      Current behaviour
      IdRepo only shows an error message which does not allow to tell which DS is used.
      
      excerpt of AM 7.0.2 IdRepo debug log in 'error' level
      c.i.s.l.e.LDAPv3PersistentSearch: 2021-06-21 14:33:25,445: Thread[SystemTimerPool]: TransactionId[]
      ERROR: Unable to start persistent search for baseDN ou=identities:
      [CONTINUED]Operation failed:
      [CONTINUED]Result Code: Connect Error
      [CONTINUED]Diagnostic Message: No operational connection factories available
      [CONTINUED]Matched DN:
      

      Code analysis

      com.iplanet.services.ldap.event.LDAPv3PersistentSearch.java
      ...
      public void run() { 
      ...
                          if (now - lastLogged > 60000) {
                              DEBUG.error("Unable to start persistent search for baseDN {}: {}", searchBaseDN,
                                  ex.getMessage());
                              lastLogged = now;
                          }
      ...
      
      

        Attachments

          Issue Links

            Activity

              People

              sachiko Sachiko Wallace
              bthalmayr Bernhard Thalmayr
              Votes:
              1 Vote for this issue
              Watchers:
              3 Start watching this issue

                Dates

                Created:
                Updated: