How to deal with a report by security scanning software warning that "A Web Server Uses Plain-Text Form Based Authentication"

(Doc ID 1545795.1)

Last updated on DECEMBER 11, 2017

Applies to:

Oracle Weblogic Server - Version 8.1 and later
Information in this document applies to any platform.


Security Scan software has reported the following:
"The Web server uses plain-text form based authentication. A web page exists on the target host which uses an HTML login form. This data is sent from the client to the server in plain-text"

The web server used in this instance is WebLogic Server.


Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms