I am using OpenLDAP (in a docker on Pi4b running Ubuntu LTS) for storing my Oracle TNS entries, on my Oracle VM OEL 7.9 I have configured ldap.ora and sqlnet.ora files and when I try to do tnsping , it fails with TNS-03505: Failed to resolve name Reason i found is anonymous bind, nut I have enabled the access and the error in OpenLDAP log is "err=53 text=authentication required".

The access is wide open:

ldapsearch -Y EXTERNAL -H ldapi:/// -b "cn=config" "(olcAccess=*)"

olcAccess: {0}to * by * write

TNS Entry:

objectClass: top
objectClass: orclNetService
cn: P00CDB19
orclNetDescString: (DESCRIPTION=(ADDRESS=(PROTOCOL=TCP)(HOST=192.168.1.12)(POR
 T=1521))(CONNECT_DATA=(SERVICE_NAME=P00CDB19)))

67e4ce8c.20163760 0xffff7100f160 conn=1010 fd=14 ACCEPT from IP=192.168.1.9:54260 (IP=0.0.0.0:1389)
67e4ce8c.20bea59f 0xffff71a0f160 conn=1010 op=0 BIND dn="" method=128
67e4ce8c.20c73411 0xffff71a0f160 conn=1010 op=0 RESULT tag=97 err=0 qtime=0.000066 etime=0.000638 text=
67e4ce8c.20edca04 0xffff7100f160 conn=1010 op=1 SRCH base="cn=p00cdb19,cn=OracleContext,dc=<domain_name>,dc=<domain_name>" scope=0 deref=2 filter="(objectClass=*)" 
67e4ce8c.20f3083c 0xffff7100f160 conn=1010 op=1 SRCH attr=objectclass orclNetDescString orclNetDescName orclVersion
67e4ce8c.20fb9529 0xffff7100f160 conn=1010 op=1 SEARCH RESULT tag=101 err=53 qtime=0.000076 etime=0.001111 nentries=0 text=authentication required
67e4ce8c.211d9bbb 0xffff71a0f160 conn=1010 op=2 UNBIND
67e4ce8c.2128aaf0 0xffff71a0f160 conn=1010 fd=14 closed

I am using OpenLDAP (in a docker on Pi4b running Ubuntu LTS) for storing my Oracle TNS entries, on my Oracle VM OEL 7.9 I have configured ldap.ora and sqlnet.ora files and when I try to do tnsping , it fails with TNS-03505: Failed to resolve name Reason i found is anonymous bind, nut I have enabled the access and the error in OpenLDAP log is "err=53 text=authentication required".

The access is wide open:

ldapsearch -Y EXTERNAL -H ldapi:/// -b "cn=config" "(olcAccess=*)"

olcAccess: {0}to * by * write

TNS Entry:

objectClass: top
objectClass: orclNetService
cn: P00CDB19
orclNetDescString: (DESCRIPTION=(ADDRESS=(PROTOCOL=TCP)(HOST=192.168.1.12)(POR
 T=1521))(CONNECT_DATA=(SERVICE_NAME=P00CDB19)))

67e4ce8c.20163760 0xffff7100f160 conn=1010 fd=14 ACCEPT from IP=192.168.1.9:54260 (IP=0.0.0.0:1389)
67e4ce8c.20bea59f 0xffff71a0f160 conn=1010 op=0 BIND dn="" method=128
67e4ce8c.20c73411 0xffff71a0f160 conn=1010 op=0 RESULT tag=97 err=0 qtime=0.000066 etime=0.000638 text=
67e4ce8c.20edca04 0xffff7100f160 conn=1010 op=1 SRCH base="cn=p00cdb19,cn=OracleContext,dc=<domain_name>,dc=<domain_name>" scope=0 deref=2 filter="(objectClass=*)" 
67e4ce8c.20f3083c 0xffff7100f160 conn=1010 op=1 SRCH attr=objectclass orclNetDescString orclNetDescName orclVersion
67e4ce8c.20fb9529 0xffff7100f160 conn=1010 op=1 SEARCH RESULT tag=101 err=53 qtime=0.000076 etime=0.001111 nentries=0 text=authentication required
67e4ce8c.211d9bbb 0xffff71a0f160 conn=1010 op=2 UNBIND
67e4ce8c.2128aaf0 0xffff71a0f160 conn=1010 fd=14 closed

• docker
• openldap

Share Improve this question Follow edited Mar 27 at 5:19 grawity_u1686 17.2k33 gold badges4040 silver badges6060 bronze badges asked Mar 27 at 4:18 Sandeep SandhuSandeep Sandhu 1 1

• is olcDisallows, is empty? remove if exists is olcRequires, is empty? remove if exists is olcAllows, is empty? add if doesn't exists I have fixed it by following the above order. Also I have set my access to limited and works like a charm. Thanks. – Sandeep Sandhu Commented Mar 27 at 5:31

Add a comment  | 

1 Answer 1

Sorted by: Reset to default 0

is olcDisallows, is empty? remove if exists

is olcRequires, is empty? remove if exists

is olcAllows, is empty? add if doesn't exists

I have fixed it by following the above order. Also I have set my access to limited and works like a charm. Thanks.