Federation Flow Does Not Handle Password Policy/Account Lockout (Doc ID 2026816.1)

Last updated on MARCH 08, 2017

Applies to:

Oracle Identity Federation - Version 11.1.2.2.0 and later
Information in this document applies to any platform.

Symptoms

OAM/OIF integrated with OIM.


When accessing webgate resource, if the user provides invalid credentials 5 times (login try count is 5) , on the 6th try, you get redirected to http://oim.oracle.com:7777/identity/faces/accountlocked as expected.

When performing the same set of steps for OIF flow where the request comes to OAM/OIF IDP for authentication (which is using the same authentication scheme as the webgate resource), on the 6th login attempt, instead of redirect to Account Lockout page, you get "System Error" page.

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms