Error creating search context ; [LDAP: error code 52 - Unavailable] - CA Identity Manager
search cancel

Error creating search context ; [LDAP: error code 52 - Unavailable] - CA Identity Manager

book

Article ID: 373928

calendar_today

Updated On:

Products

CA Identity Suite

Issue/Introduction

In IM, we observed an issue when a certain task was called many times by an external batch through WS. Seeing below error for this task

ERROR MESSAGE: Error creating search context ; [LDAP: error code 52 - Unavailable]

Environment

Release : 14.5.1
Component : Identity Manager

Cause

This problem mainly appears when a specific task is called many times. This task triggers PX which LDAP query as DATA elements (1 data element against the user store, another against a different LDAP server)

Stack trace when the issue occurs:

2024-07-14 08:10:13,946 ERROR [ims.policyxpress.PxController] (default task-97) ENVIRONMENT error occurred while evaluating policy. error occurred. Throwing exception. com.ca.identitymanager.policyxpress.exceptions.PxEnvironmentException: Error creating search context


        at com.ca.identitymanager.policyxpress.plugins.data.PxDataLDAPQuery.getInitialContext(PxDataLDAPQuery.java:177)

        at com.ca.identitymanager.policyxpress.plugins.data.PxDataLDAPQuery.getObject(PxDataLDAPQuery.java:51)

        at com.ca.identitymanager.policyxpress.structures.PxPolicy.setElementData(PxPolicy.java:102)

        at com.ca.identitymanager.policyxpress.structures.PxPolicy.buildElementValues(PxPolicy.java:94)

        at com.ca.identitymanager.policyxpress.structures.PxPolicy.getElementStr(PxPolicy.java:73)

        at com.ca.identitymanager.policyxpress.engine.PxProvider.ruleMatch(PxProvider.java:243)

        at com.ca.identitymanager.policyxpress.engine.PxProvider.getMatchingRule(PxProvider.java:189)

        at com.ca.identitymanager.policyxpress.engine.PxExecuter.runPolicy(PxExecuter.java:57)

        at com.ca.identitymanager.policyxpress.engine.PxEventController.executeEvent(PxEventController.java:168)

        at com.ca.identitymanager.policyxpress.engine.PxEventController.processEvent(PxEventController.java:123)

        at com.ca.identitymanager.policyxpress.listeners.PxBLTHListener.execute(PxBLTHListener.java:100)

Caused by: javax.naming.ServiceUnavailableException: [LDAP: error code 52 - Unavailable]

Resolution

A Defect is raised with the Engineering Team to know if/when this connection is closed today by IM (it will close for sure at a certain time either by a firewall or the target LDAP server). If it’s never closed then we would need a fix for that.

Engineering provided a fix to resolve this issue as part of defect DE610820. If you face the same issue then please create a support ticket and request for the fix.

Powered by Wolken Software