CA Identity Manager IM Error - ERROR MESSAGE: Error creating search context ; [LDAP: error code 52 - Unavailable]
search cancel

CA Identity Manager IM Error - ERROR MESSAGE: Error creating search context ; [LDAP: error code 52 - Unavailable]

book

Article ID: 373928

calendar_today

Updated On:

Products

CA Identity Suite

Issue/Introduction

In IM, observed an issue when a certain task was called many times by an external batch through WS. Seeing an error for this task

 ERROR MESSAGE: Error creating search context ; [LDAP: error code 52 - Unavailable]

Environment

IM 14.5 SP1

Cause

This problem mainly appears when a specific task is called many times. This task triggers PX which LDAP query as DATA elements (1 data element against the user store, another against a different LDAP server)

When the issue starts to occur the stack exception is:

2024-07-14 08:10:13,946 ERROR [ims.policyxpress.PxController] (default task-97) ENVIRONMENT error occurred while evaluating policy. error occured. Throwing exception. com.ca.identitymanager.policyxpress.exceptions.PxEnvironmentException: Error creating search context


        at com.ca.identitymanager.policyxpress.plugins.data.PxDataLDAPQuery.getInitialContext(PxDataLDAPQuery.java:177)

        at com.ca.identitymanager.policyxpress.plugins.data.PxDataLDAPQuery.getObject(PxDataLDAPQuery.java:51)

        at com.ca.identitymanager.policyxpress.structures.PxPolicy.setElementData(PxPolicy.java:102)

        at com.ca.identitymanager.policyxpress.structures.PxPolicy.buildElementValues(PxPolicy.java:94)

        at com.ca.identitymanager.policyxpress.structures.PxPolicy.getElementStr(PxPolicy.java:73)

        at com.ca.identitymanager.policyxpress.engine.PxProvider.ruleMatch(PxProvider.java:243)

        at com.ca.identitymanager.policyxpress.engine.PxProvider.getMatchingRule(PxProvider.java:189)

        at com.ca.identitymanager.policyxpress.engine.PxExecuter.runPolicy(PxExecuter.java:57)

        at com.ca.identitymanager.policyxpress.engine.PxEventController.executeEvent(PxEventController.java:168)

        at com.ca.identitymanager.policyxpress.engine.PxEventController.processEvent(PxEventController.java:123)

        at com.ca.identitymanager.policyxpress.listeners.PxBLTHListener.execute(PxBLTHListener.java:100)

Caused by: javax.naming.ServiceUnavailableException: [LDAP: error code 52 - Unavailable]

Resolution

A Defect is raised with the Engineering Team to know if/when this connection is closed today by IM (it will close for sure at a certain time either by a firewall or the target LDAP server). If it’s never closed then we would need a fix for that.

An HF is available for the IDM 14.5.1 version. Please raise a support ticket and request for a HF-DE610820 (1).zip

Additional Information

Reference Defect #DE610820

Powered by Wolken Software