Not able to proceed with refreshing LDAP group (Error: PAM-LDAP-0031 _ PAM-LDAP-0037)
search cancel

Not able to proceed with refreshing LDAP group (Error: PAM-LDAP-0031 _ PAM-LDAP-0037)

book

Article ID: 244774

calendar_today

Updated On:

Products

CA Privileged Access Manager (PAM)

Issue/Introduction

Not able to complete refresh LDAP group (Only one LDAP group).

PAM-LDAP-0031: Retrieving attributes of member cn=EMPTY failed with exception [LDAP: error code 32 - The entry cn=EMPTY specified as the search base does not exist in the Directory Server] 

PAM-LDAP-0037: Exception occurred while processing a search on entity cn=EMPTY: [LDAP: error code 32 - The entry cn=EMPTY specified as the search base does not exist in the Directory Server]

Environment

Release : 4.1.X 

Component : PRIVILEGED ACCESS MANAGEMENT 

Cause

Resolution

After removing the invalid entry the LDAP discovery worked as expected.