Unable to access users in Identity Manager with an AD LDS corporate user store

book

Article ID: 32116

calendar_today

Updated On:

Products

CA Identity Manager CA Identity Governance CA Identity Portal CA Risk Analytics CA Secure Cloud SaaS - Arcot A-OK (WebFort) CLOUDMINDER ADVANCED AUTHENTICATION CA Secure Cloud SaaS - Advanced Authentication CA Secure Cloud SaaS - Identity Management CA Secure Cloud SaaS - Single Sign On

Issue/Introduction

Problem:

When trying to look up users from an AD LDS user store the following error appears in the server logs:

08:20:35,543 ERROR [ims.llsdk.directory.jndi.searcher] (http-/0.0.0.0:8080-1) javax.naming.OperationNotSupportedException: [LDAP: error code 12 - 00000057: LdapErr: DSID-0C090753, comment: Error processing control, data 0, v1db1 ]; 

Solution:

Export your directory.xml file and modify the following line:

<DirectorySearch maxrows="[A NON ZERO NUMBER]" maxpagesize="[A NON ZERO NUMBER]"/>

<Please see attached file for image>

beforeEditing.jpg

Change that line to <DirectorySearch maxrows="0" maxpagesize="0"/>

<Please see attached file for image>

afterEditing.jpg

Once that has been changed, import the modified xml file back into your environment.

Environment

Release:
Component: IDMGR

Attachments

1558699214831000032116_sktwi1f5rjvs16okj.jpeg get_app
1558699212768000032116_sktwi1f5rjvs16oki.jpeg get_app