Logon Manager Prompts for Passphrase After Authentication to AD Repository with Passphrase Suppression Enabled for User's SID

(Doc ID 1475209.1)

Last updated on OCTOBER 09, 2017

Applies to:

Oracle Enterprise Single Sign-On Suite Plus - Version and later
Information in this document applies to any platform.


The agent prompts users to provide a passphrase when starting up or accessing an application for the first time even though the Windows v2 authenticator is configured for Passphrase Suppression using User's SID. When a user starts the Logon Manager agent as a new first time user, they should be prompted to provide their Windows password to authenticate to the repository. If the SID is used as the passphrase recovery key, then the user will not be prompted for a passphrase as it will use the User's SID attribute from Active Directory as the recovery key and suppress the passphrase prompt. The issue is preventing users from authenticating to the repository and the agent fails to start or work properly.


Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms