OID Password Filter Main Log Shows Successful Password Updated, But Ldapbinds To OID With Working AD Passwords Fail With "Invalid credentials"
Last updated on MARCH 08, 2017
Applies to:Oracle Internet Directory - Version 10.1.4 and later
Information in this document applies to any platform.
Oracle Internet Directory (OID) 10g or 11g.
Configured Password Filter to sync passwords from Active Directory (AD) to OID.
Passwords seem to be updated ok as per the Password Filter's Main log, which show no errors and only successful update entries such as below:
DN IS -->
After Update Password
Deleting the record from datastore if it exists
Got Registry enteries
Firing Search Request
AD search for a user objectGUID is successfull
Inside sgslodac destructor
Inside sgsladac destructor
Password Updation successful in child process
However, ldapbinds to OID as the AD user fail:
ldap_bind: Invalid credentials
Already doublechecked and confirmed that the same AD password works fine with an ldapbind directly against AD, i.e.:
Sign In with your My Oracle Support account
Don't have a My Oracle Support account? Click to get started
My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms