OAM 11g: OAM Admin User Must Login Twice When Accessing OAM 11g Console
Last updated on MARCH 08, 2017
Applies to:Oracle Access Manager - Version 18.104.22.168.0 and later
Information in this document applies to any platform.
When accessing Oracle Access Manager (OAM) 11g Administration Console at /oamconsole a double login prompt occurs.
The user is first presented with the OAM Single Sign-On (SSO) login page. After submitting valid OAM administrator credentials, the native oamconsole application login page is displayed. If the same OAM administrator credentials are submitted in the second login page access is successful.
OAM has recently been reconfigured so that the default WebLogic embedded LDAP store is no longer the OAM System Store, either manually or due to integration e.g. OAM-OIM integration.
The WebLogic domain log shows the message 'User <userid> in security realm myrealm has had 5 invalid login attempts, locking account for 30 minutes.'
Example DOMAIN_HOME/servers/AdminServer/DOMAINNAME.log file entries:
####<Oct 13, 2011 10:56:31 AM CEST> <Notice> <Security> <oamsrv> <AdminServer20> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <> <> <3ec316d6eee8d1d7:4aa110e:132fbfb385b:-8000-00000000000005b7> <1318496191822> <BEA-090078> <User oamadmin in security realm myrealm has had 5 invalid login attempts, locking account for 30 minutes.>
Steps to reproduce
1. Access http://adminsrv.oracle.com:7001/oamconsole
2. The OAM SSO login page is displayed.
3. User submits OAM administrator credentials.
4. A second login page is presented by the oamconsole application.
5. User submits OAM administrator credentials again: the OAM Console is displayed.
Sign In with your My Oracle Support account
Don't have a My Oracle Support account? Click to get started
My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms