ODSEE - Passwordhistory Attribute Not Updated - Password Policies and Replication (Doc ID 2188197.1)

Last updated on OCTOBER 07, 2016

Applies to:

Oracle Directory Server Enterprise Edition - Version 11.1.1.7.3 and later
Information in this document applies to any platform.

Goal

On : 11.1.1.7.3 version, Configuration

passwordhistory attribute not updated

We added 6 new masters to our LDAP. Yesterday, we noticed that two accounts (and possibly more) had updated their passwords but the 'passwordHistory' attribute did not reflect the change. The password was updated and they can use the new password.  While researching this, I found that the new servers did not have password history enabled in the Global Password Policy. I have subsequently enabled it to match the older master.

QUESTION: Would not having the password history enabled in 6 out of 14 masters prevent (randomly, it seems) from recording the new 'passwordHistory' attribute to properly reflect that the password has been changed?
 

Solution

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms