Password Policy Minimum Age Error Contains USERID Instead of Date. ERROR: "IAM-3040034 : Password cannot be changed before USERNAME. "

(Doc ID 2203496.1)

Last updated on AUGUST 31, 2017

Applies to:

Identity Manager - Version 11.1.2.3.160419 and later
Information in this document applies to any platform.

Symptoms

When a user attempts to change their password within a time interval which violates the Minimum Password Age set on the Password Policy, the resulting popup Error message displays the username instead of the date (corresponding to the number of days) set in the policy.  

The error message shows:
Error
IAM-3040034 : Password cannot be changed before USERNAME.


STEPS
-----------------------
The issue can be reproduced at will with the following steps:

  1. Create a Password Policy, with a Minimum Password Age set value.
  2. Create an Organization and specify the Password Policy you created in step 1.
  3. Create a new User with a default password.
  4. As the new User, access the Self Service UI and set your new password.
  5. Then from the Self Service UI, attempt to reset the password that you just created (violating the number of days value set in for the Minimum Password Age).

The log file (usually at $DOMAIN_HOME/servers/<OIMServerX>/logs/<OIMServerX>-diagnostic.log) will show the correct error message with "The password for user <Userid> cannot be changed before Sun Aug 28 15:50:58 MDT 2016." and some additional errors related to oracle.iam.selfservice.resources.Logging:

 [2016-08-26T15:52:28.472-06:00] [WLS_OIM1] [WARNING] [] [oracle.iam.selfservice.self.selfmgmt.impl.handlers.changepwd] [tid: [ACTIVE].ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: USERNAME] [ecid: abc123] [APP: oim#11.1.2.0.0] [DSID: efg456] The password for user USERNAME cannot be changed before Sun Aug 28 15:50:58 MDT 2016.
[2016-08-26T15:52:28.482-06:00] [WLS_OIM1] [ERROR] [] [oracle.iam.platform.utils] [tid: [ACTIVE].ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: USERNAME] [ecid: abc123] [APP: oim#11.1.2.0.0] [DSID: efg456] An error occurred while loading the parent resource bundle oracle.iam.selfservice.resources.Logging
[2016-08-26T15:52:28.493-06:00] [WLS_OIM1] [ERROR] [] [oracle.iam.platform.kernel.impl] [tid: [ACTIVE].ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: USERNAME] [ecid: abc123] [APP: oim#11.1.2.0.0] [DSID: efg456] Kernel Information: {0}[[
oracle.iam.platform.kernel.ValidationFailedException: The password for user USERNAME cannot be changed before Sun Aug 28 15:50:58 MDT 2016.
at oracle.iam.selfservice.self.selfmgmt.impl.handlers.changepwd.ChangePasswordValidationHandler.validatePwdMinAge(ChangePasswordValidationHandler.java:485)
at oracle.iam.selfservice.self.selfmgmt.impl.handlers.changepwd.ChangePasswordValidationHandler.validatePwdMinAge(ChangePasswordValidationHandler.java:476)
at oracle.iam.selfservice.self.selfmgmt.impl.handlers.changepwd.ChangePasswordValidationHandler.validate(ChangePasswordValidationHandler.java:229)
at oracle.iam.selfservice.self.selfmgmt.impl.handlers.changepwd.ChangePasswordValidationHandler.validate(ChangePasswordValidationHandler.java:125)
at oracle.iam.platform.kernel.impl.OIMEvent.executeHandlers(OIMEvent.java:204)
....

]]
[2016-08-26T15:52:28.662-06:00] [WLS_OIM1] [WARNING] [] [oracle.iam.platform.kernel.impl] [tid: [ACTIVE].ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: USERNAME] [ecid: abc123] [APP: oim#11.1.2.0.0] [DSID: efg456] Kernel Information: [[
====================================
Flow for Process Id 1036011 name 7264b031-20a9-4863-9d89-4ee3b849a985
Status : ACTIVE
Id 1 name SelfChangePasswordValidationHandler : FAILED
Status : FAILED
====================================

]]
[2016-08-26T15:52:28.666-06:00] [WLS_OIM1] [ERROR] [] [oracle.iam.selfservice.self.selfmgmt.impl] [tid: [ACTIVE].ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: USERNAME] [ecid: abc123] [APP: oim#11.1.2.0.0] [DSID: efg456] Validation failed for change password.[[
oracle.iam.platform.kernel.ValidationFailedException: The password for user USERNAME cannot be changed before Sun Aug 28 15:50:58 MDT 2016.
at oracle.iam.selfservice.self.selfmgmt.impl.handlers.changepwd.ChangePasswordValidationHandler.validatePwdMinAge(ChangePasswordValidationHandler.java:485)
at oracle.iam.selfservice.self.selfmgmt.impl.handlers.changepwd.ChangePasswordValidationHandler.validatePwdMinAge(ChangePasswordValidationHandler.java:476)
at oracle.iam.selfservice.self.selfmgmt.impl.handlers.changepwd.ChangePasswordValidationHandler.validate(ChangePasswordValidationHandler.java:229)
at oracle.iam.selfservice.self.selfmgmt.impl.handlers.changepwd.ChangePasswordValidationHandler.validate(ChangePasswordValidationHandler.java:125)
at oracle.iam.platform.kernel.impl.OIMEvent.executeHandlers(OIMEvent.java:204)
....

]]
[2016-08-26T15:52:28.672-06:00] [WLS_OIM1] [ERROR] [] [oracle.iam.platform.utils] [tid: [ACTIVE].ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: USERNAME] [ecid: abc123] [APP: oim#11.1.2.0.0] [DSID: efg456] An error occurred while loading the parent resource bundle oracle.iam.selfservice.resources.Logging

 

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms