OUD 11gR2 Returns Error Code 49 (Invalid Credentials) Instead of Error Code 52 (Exceed password retry limit. Account locked) When Account is Locked Out (Doc ID 2109044.1)

Last updated on MARCH 21, 2017

Applies to:

Oracle Unified Directory - Version 11.1.2.0.0 and later
Information in this document applies to any platform.

Symptoms

Oracle Unified Directory (OUD) 11gR2, e.g., 11.1.2.3.0 version.

When an account is locked out in OUD due to password policy and too many failed attempts, error code 49 (Invalid Credentials) is returned when LDAP return code 52 should actually be returned (Exceed password retry limit. Account locked).

In comparison, other LDAP servers, return error code 52, but in OUD error code 49 is returned.

Steps to reproduce:
1. Bind to OUD with the wrong password until the account is locked.
2. Submit an ldap operation with the correct password, and it returns error code 49 (Invalid Credentials) instead of error code 52 (Exceed password retry limit. Account lock)

Examples with OUD:

 

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms