However OAM Access System is not implementing the password policy when users access the application. Although Change On Reset is enabled in the password policy for the users' domain, after a user's password is reset by the OAM administrator in User Manager, when that user next logs into the Portal application they are not redirected to reset their password.
Steps to Reproduce
1. Login to User Manager as OAM administrator user and retrieve a user using Search facility. Edit the user and change the user's password value. 2. In a new browser session, access the OAM-protected application. 3. The OAM login page is displayed. 4. Submit the credentials for the user whose password was reset in step 1. 5. Login is successful and the Portal application page is displayed.
Expected behaviour: the user should be redirected by OAM to reset password before access to the application page is permitted.
To view full details, sign in with your My Oracle Support account.
Don't have a My Oracle Support account? Click to get started!