OAMMS Register API Failure Of Challenge Causes Question Counter To Increment Twice (Doc ID 1940864.1)

Last updated on MARCH 08, 2017

Applies to:

Oracle Adaptive Access Manager - Version 11.1.2.2.0 and later
Information in this document applies to any platform.

Goal

When failing a challenge question on the second step of OAMMS register API, the Question Counter for the OAAM user is incremented twice. It appears that the OaamMobileSecurityHandler is calling both VCryptTracker.updateAuthStatus with wrong_answer status as well as calling VCryptTracker.incrementChallengeCounter. The updateAuthStatus API already increments the counter when the status is wrong_answer. However, calling incrementChallengeCounter causes the counter to be incremented again. Why is this happening?
 

Solution

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms