Looping With OIM AD Password Sync and AD User Management Connector
Last updated on MAY 07, 2018
Applies to:Identity Manager Connector - Version 126.96.36.199 and later
Information in this document applies to any platform.
OIM 11g R2 PS2 setup has been configured with both AD UM connector version : 188.8.131.52 and password sync connector : 184.108.40.206.0
1. User changes password using ctrl+alt+del.
2. AD DLL intercepts the password and pushes into OIM
3. OIM password is updated and it triggeres AD UM connector password change task.
4. OIM receives this password and is sending the password back to AD and this goes on a loop.
This is the same case when user updates password via OIM, which is updated in AD and is in turn sent back to OIM by the AD password dll.
When second time AD tries to send the same password to OIM, OIM rejects the change as the password is the same, due to this AD persistent queue is growing and not able to clean itself after 5 unsuccessful attempts.
Sign In with your My Oracle Support account
Don't have a My Oracle Support account? Click to get started
My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms