ALERT: Some images may not load properly within the Knowledge Base Article. If you see a broken image, please right-click and select 'Open image in a new tab'. We apologize for this inconvenience.

Error : '81' during search: 'error: Can't contact LDAP server'

book

Article ID: 8010

calendar_today

Updated On:

Products

CA Single Sign On Secure Proxy Server (SiteMinder) CA Single Sign On SOA Security Manager (SiteMinder) CA Single Sign-On SITEMINDER

Issue/Introduction

 

When running a Policy Server which connects to backend LDAP User
Stores, from time to time, some ldap error 81 in the smps.log are
seen.

  [14784/64][Wed Aug 09 2017 22:51:27][SmDsLdapConnMgr.cpp:1190]
  [ERROR][sm-Ldap-02230] Error# '81' during search: 'error: Can't contact LDAP server' Search Query = 'objectclass=*'

 

Cause

 

This message might appear if the LDAP Store closes its connection on
its side. As per design, Policy Server needs the LDAP Store's
connections to be readily available. Policy Server won't end any
connection that the backend LDAP Store closes. When the Policy Server
then tries to use such a closed connection, the Policy Server will
report LDAP error 81. Straight after, Policy Server will also close
this connection and establish a new one with the same backend LDAP
Store. As such, the LDAP Store shouldn't close any connection for
timeout or other reason.

 

Environment

 

Policy Server all versions

 

Resolution

 

To avoid this message, configure the LDAP Backend Store to never close
its connection with the Policy Server.