IBM Security Privileged Identity Manager, Version 2.0

Bulkload command errors

When running the bulkload command, some errors might occur. The bulkload utility fails if any of the entries in the input LDIF file exist in LDAP.

This error might occur if the suffix you defined exists as an entry in the directory server. It might be necessary to delete all entries in the suffix (but leave the suffix) from LDAP before running the command. You can use the ldapsearch commands to check for existence of entries, and the ldapdelete command to remove these entries.

Error codes:

GLPCRY007E The directory key stash file is inconsistent with the associated encrypted data.

GLPBLK071E Bulkload is unable to run because of an initialization error.

GLPBLK030E Run DB2CMD.EXE first, and then run bulkload within the "DB2 CMD" command interpreter.

To correct these errors, you must know the encryption seed and salt values of the target instance. The target instance is the directory server instance where you are running the bulkload.

  1. To determine the salt value of target instance, run the following command from TDS_HOME/bin:

    ldapsearch -D bind DN -w password -h hostname -p port -s base -b cn=crypto,cn=localhost cn=*

    where:

    bind DN is the distinguished name (DN) of the directory server.

    password is the DN password.

    hostname is the name of the computer where IBM® Security Directory Server is installed.

    port is the port number on which IBM Security Directory Server is listening.

  2. Replace the value of ibm-slapdCryptoSync, ibm-slapdCryptoSalt with the values returned by the ldapsearch command in the ldap_output_file file. This file is generated as output of the db2ldif command, for example old_ldif_data.ldif.
  3. Run the bulkload command again.
Note: You can use the -W OUT_FILE_NAME option with the bulkload command. This option places the output from the command into the specified file. The bulkload command runs several instances of a DB2 command to load data. Each one has its own success, error, or warning messages. Without the -W option to save the output, it is difficult to check the result.
Parent topic: Troubleshooting the virtual appliance

Feedback