LDAP Error Codes
Posted on Nov 21, 2009 (last modified Jun 1, 2021)
ERROR CODE | LDAPEXCEPTION CONSTANT | POSSIBLE CAUSE(S) |
---|---|---|
0 | SUCCESS | The operation completed successfully |
1 | OPERATION_ERROR | Invalid syntax for ACI or schema, or inappropriate control for the operation |
2 | PROTOCOL_ERROR | Invalid filter expression on search, or DN on add, modify, or delete |
3 | TIME_LIMIT_EXCEEDED | Either the server’s or the client’s specified search time limit was exceeded |
4 | SIZE_LIMIT_EXCEEDED | Either the server’s or the client’s specified limit on number of search results was exceeded |
5 | COMPARE_FALSE | A compare operation returns mismatch |
6 | COMPARE_TRUE | A compare operation returns match |
7 | AUTH_METHOD_NOT_SUPPORTED | The server does not support the requested authentication method |
8 | STRONG_AUTH_REQUIRED | The server requires an authentication method stronger than unencrypted user name and password |
9 | LDAP_PARTIAL_RESULTS | The client has bound with LDAPv2, or the server supports only LDAPv2, and the base DN specified by the client is not among the naming contexts of the server |
10 | REFERRAL | The server is configured to return a referral or search reference when an operation is directed toward this DN |
11 | ADMIN_LIMIT_EXCEEDED | To satisfy the search request, the server would need to process too many entries; the search may need to be narrowed, or the server’s look-through limit raised |
12 | UNAVAILABLE_CRITICAL_EXTENSION | A control was provided with the request; the control was tagged as critical, but the server doesn’t support it |
13 | CONFIDENTIALITY_REQUIRED | . |
14 | SASL_BIND_IN_PROGRESS | SASL authentication is being negotiated between the client and the server |
16 | NO_SUCH_ATTRIBUTE | An attribute to be modified or deleted was not present in the entry |
17 | UNDEFINED_ATTRIBUTE_TYPE | . |
18 | INAPPROPRIATE_MATCHING | . |
19 | CONSTRAINT_VIOLATION | Invalid attribute for this entry, or new password does not meet password policy requirements |
20 | ATTRIBUTE_OR_VALUE_EXISTS | Attempt to add an identical attribute value to an existing one |
21 | INVALID_ATTRIBUTE_SYNTAX | . |
32 | NO_SUCH_OBJECT | Attempt to bind with a nonexistent DN, to search with a nonexistent base DN, or to modify or delete a nonexistent DN |
33 | ALIAS_PROBLEM | . |
34 | INVALID_DN_SYNTAX | Invalid DN or RDN specified on adding an entry or modifying an RDN |
35 | IS_LEAF | . |
36 | ALIAS_DEREFERENCING_PROBLEM | . |
48 | INAPPROPRIATE_AUTHENTICATION | . |
49 | INVALID_CREDENTIALS | Invalid password or other credentials supplied on bind |
50 | INSUFFICIENT_ACCESS_RIGHTS | . |
51 | BUSY | . |
52 | UNAVAILABLE | Returned by SDK if server is not accessible |
53 | UNWILLING_TO_PERFORM | User not allowed to change password, password expired, operation not implemented (moddn), attempt to modify read-only attribute, attempt to delete all schema elements, attempt to delete an object class that has derived object classes, attempt to delete a read-only schema element, the database is read-only, no back end (database) is available for the operation, or other uncategorized error |
54 | LOOP_DETECT | . |
64 | NAMING_VIOLATION | . |
65 | OBJECT_CLASS_VIOLATION | Invalid attribute specified for modify operation on an entry |
66 | NOT_ALLOWED_ON_NONLEAF | Attempt to delete an entry that has child nodes |
67 | NOT_ALLOWED_ON_RDN | . |
68 | ENTRY_ALREADY_EXISTS | . |
69 | OBJECT_CLASS_MODS_PROHIBITED | . |
71 | AFFECTS_MULTIPLE_DSAS | . |
80 | OTHER | . |
81 | SERVER_DOWN | SDK could not connect to server |
89 | PARAM_ERROR | No modifications on a modify operation, no attributes on an add operation, invalid scope or empty search filter on search, or other invalid argument to an SDK method |
91 | CONNECT_ERROR | SDK reports unexpected error connecting to server |
92 | LDAP_NOT_SUPPORTED | . |
93 | CONTROL_NOT_FOUND | . |
94 | NO_RESULTS_RETURNED | . |
95 | MORE_RESULTS_TO_RETURN | . |
96 | CLIENT_LOOP | . |
97 | REFERRAL_LIMIT_EXCEEDED | SDK reports hop limit exceeded on referral processing |