Oracle Access Manager 11g (OAM 188.8.131.52.x) OAM Admin User Must Login Twice When Accessing OAM 11g Console
(Doc ID 1376894.1)
Last updated on OCTOBER 09, 2019
Applies to:Oracle Access Manager - Version 184.108.40.206.0 and later
Information in this document applies to any platform.
When accessing Oracle Access Manager (OAM) 11g Administration Console at /oamconsole a double login prompt occurs.
The user is first presented with the OAM Single Sign-On (SSO) login page. After submitting valid OAM administrator credentials, the native oamconsole application login page is displayed. If the same OAM administrator credentials are submitted in the second login page access is successful.
OAM has recently been reconfigured so that the default WebLogic embedded LDAP store is no longer the OAM System Store, either manually or due to integration e.g. OAM-OIM integration.
The WebLogic domain log shows the message 'User <userid> in security realm <REALM_NAME> has had 5 invalid login attempts, locking account for 30 minutes.'
Example DOMAIN_HOME/servers/AdminServer/DOMAINNAME.log file entries:
####<Oct 13, 2011 10:56:31 AM CEST> <Notice> <Security> <> <AdminServer> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <> <> <> <> <BEA-090078> <User <ADMIN_USER> in security realm <REALM_NAME> has had 5 invalid login attempts, locking account for 30 minutes.>
Steps to reproduce
1. Access http://<FQ_WLS_ADMINSERVER_HOSTNAME:PORT>/oamconsole
2. The OAM SSO login page is displayed.
3. User submits OAM administrator credentials.
4. A second login page is presented by the oamconsole application.
5. User submits OAM administrator credentials again: the OAM Console is displayed.
To view full details, sign in with your My Oracle Support account.
Don't have a My Oracle Support account? Click to get started!
In this Document