OID Password Filter Main Log Shows Successful Password Updated, But Ldapbinds To OID With Working AD Passwords Fail With "Invalid credentials"
(Doc ID 1349704.1)
Last updated on NOVEMBER 15, 2019
Applies to:
Oracle Internet Directory - Version 10.1.4 and laterInformation in this document applies to any platform.
Symptoms
Oracle Internet Directory (OID) 10g or 11g.
Configured Password Filter to sync passwords from Active Directory (AD) to OID.
Passwords seem to be updated ok as per the Password Filter's Main log, which show no errors and only successful update entries such as below:
...<snip>....
Search Succeeded
DN IS -->
cn=<USERNAME1>,cn=users,dc=<COMPANY>,dc=com
cn=<USERNAME1>,cn=users,dc=<COMPANY>,dc=com
Inside UpdatePassword
Password Updated
After Update Password
Deleting the record from datastore if it exists
Inside sgsladds::sgslperdeleteData
Only dataattribute
Got Registry enteries
contact
description
Got Entiredn
cn=<USERNAME1>,OU=<OU1>,DC=<COMPANY>,DC=com
Inside sgsladdsSearchUser
Firing Search Request
AD search for a user objectGUID is successfull
Inside sgslodac destructor
Inside sgsladac destructor
Password Updation successful in child process
...<snip>...
Search Succeeded
DN IS -->
cn=<USERNAME1>,cn=users,dc=<COMPANY>,dc=com
cn=<USERNAME1>,cn=users,dc=<COMPANY>,dc=com
Inside UpdatePassword
Password Updated
After Update Password
Deleting the record from datastore if it exists
Inside sgsladds::sgslperdeleteData
Only dataattribute
Got Registry enteries
contact
description
Got Entiredn
cn=<USERNAME1>,OU=<OU1>,DC=<COMPANY>,DC=com
Inside sgsladdsSearchUser
Firing Search Request
AD search for a user objectGUID is successfull
Inside sgslodac destructor
Inside sgsladac destructor
Password Updation successful in child process
...<snip>...
However, ldapbinds to OID as the AD user fail:
Cause
To view full details, sign in with your My Oracle Support account. |
|
Don't have a My Oracle Support account? Click to get started! |
In this Document
Symptoms |
Cause |
Solution |