E1: SEC: Global Password Policy Issue For The Option "Maximum Number Of Consecutive Characters" In a Password
(Doc ID 2493199.1)
Last updated on FEBRUARY 10, 2021
Applies to:JD Edwards EnterpriseOne Tools - Version 9.2 and later
Information in this document applies to any platform.
This is an issue with the global password policy option. In the processing option of P98OWSEC - EnterpriOne Security, there is an option "Enter the maximum number of consecutive characters" in a password".
When user sets the maximum number of consecutive characters that can be used in a password to 1, and enters a new password such as 'password', an error is thrown (due to consecutive "ss"). If the user is prompted to change his password upon login, and enters the new password as 'password', no error is thrown and system accepts it.
This issue happens on the Web Client only. When done in a Fat Client, the system throws and error for consecutive characters. LDAP is not enabled.
To view full details, sign in with your My Oracle Support account.
Don't have a My Oracle Support account? Click to get started!
In this Document