My Oracle Support Banner

UCM Application is not Invalidating the Session with OAM set for Basic Over Ldap Scheme. (Doc ID 1382858.1)

Last updated on DECEMBER 18, 2023

Applies to:

Oracle WebCenter Content - Version and later
Information in this document applies to any platform.


Oracle Access Manager Authentication scheme when set to Basic over Ldap does not invalidate the UCM user session .

When UCM (configured with the above OAM setting) even after logout , browser session does not get cleared hence the ucm login happens without any security check .

Browser is not closed after logging out from UCM and the url is typed again which brings up the above scenario where in the user is not challenged for the Login Prompt. 


To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!

In this Document

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.