Looping With OIM AD Password Sync and AD User Management Connector (Doc ID 1967792.1)

Last updated on SEPTEMBER 19, 2016

Applies to:

Identity Manager Connector - Version 9.1.1.5 and later
Information in this document applies to any platform.

Symptoms

OIM 11g R2 PS2 setup has been configured with both AD UM connector version : 11.1.1.6 and password sync connector : 9.1.1.5.0

1. User changes password using ctrl+alt+del.
2. AD DLL intercepts the password and pushes into OIM
3. OIM password is updated and it triggeres AD UM connector password change task.
4. OIM receives this password and is sending the password back to AD and this goes on a loop.

This is the same case when user updates password via OIM, which is updated in AD and is in turn sent back to OIM by the AD password dll.

When second time AD tries to send the same password to OIM, OIM rejects the change as the password is the same, due to this AD persistent queue is growing and not able to clean itself after 5 unsuccessful attempts.

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms