My Oracle Support Banner

Oracle Access Manager (OAM) 11.1.2.3: Login/Authentication Fails - Receiving Password Expiry Warning from OID (Doc ID 2212069.1)

Last updated on JUNE 01, 2018

Applies to:

Oracle Access Manager - Version 11.1.2.3.0 to 11.1.2.3.5 [Release 11g]
Information in this document applies to any platform.

Symptoms

When a user is trying to login to OAM via OID Identity Store within the Password Expiry Warning, the authentication fails with the following errors despite the password has not been expired:

oam_server1-diagnostic.log:

[2016-12-08T13:50:28.489+09:00] [oam_server1] [ERROR] [OAMSSA-20144] [oracle.oam.user.identity.provider] ... [APP: oam_server#11.1.2.0.0] Authentication Failure for user : testuser, for idstore OIDStore with exception oracle.igf.ids.AuthenticationWarningException: Password is going to expire in 3570 seconds for cn=testuser,cn=users,dc=example,dc=com. and warning null
[2016-12-08T13:50:28.491+09:00] [oam_server1] [NOTIFICATION] [] [oracle.oam.engine.authn] ... [APP: oam_server#11.1.2.0.0] [[
oracle.security.am.engine.authn.api.exception.AuthenticationException
at oracle.security.am.engine.authn.internal.executor.AuthenticationModuleExecutor.checkAndThrowAuthenticationException(AuthenticationModuleExecutor.java:375)
at oracle.security.am.engine.authn.internal.executor.AuthenticationModuleExecutor.execute(AuthenticationModuleExecutor.java:297)
at oracle.security.am.engine.authn.internal.executor.AuthenticationSchemeExecutor.execute(AuthenticationSchemeExecutor.java:110)
at oracle.security.am.engine.authn.internal.controller.AuthenticationEngineControllerImpl.validateUser(AuthenticationEngineControllerImpl.java:269)
at oracle.security.am.engines.enginecontroller.AuthnEngineController.authenticateUser(AuthnEngineController.java:986)
...
Caused by: oracle.security.am.engines.common.identity.provider.exceptions.IdentityProviderException: OAMSSA-20083: User password has expire warning
at oracle.security.am.engines.common.identity.provider.impl.ids.IDSUserProviderImpl.getIDSSpecificException(IDSUserProviderImpl.java:831)
at oracle.security.am.engines.common.identity.provider.impl.ids.IDSUserProviderImpl.authenticateUserByName(IDSUserProviderImpl.java:803)
at oracle.security.am.engines.common.identity.provider.impl.IdentityProviderImpl.authenticateUserByName(IdentityProviderImpl.java:1305)
at oracle.security.am.engines.common.identity.provider.impl.OracleUserIdentityProvider.authenticateUserByName(OracleUserIdentityProvider.java:482)
at oracle.security.am.engine.authn.internal.executor.AuthenticationModuleExecutor.execute(AuthenticationModuleExecutor.java:228)
... 42 more
Caused by: oracle.igf.ids.AuthenticationWarningException: Password is going to expire in 3570 seconds for cn=testuser,cn=users,dc=example,dc=com.
at oracle.igf.ids.arisid.ArisIdServiceManager.findEntity(ArisIdServiceManager.java:1692)
at oracle.igf.ids.UserManager.authenticateUser(UserManager.java:516)
at oracle.security.am.engines.common.identity.provider.impl.ids.IDSUserProviderImpl.authenticateUserByName(IDSUserProviderImpl.java:792)
... 45 more
Caused by: oracle.igf.ids.arisid.ArisIdAuthWarningException: Password is going to expire in 3570 seconds for cn=testuser,cn=users,dc=example,dc=com.
at com.oracle.ovd.arisid.OvdIdsStackProvider.doFind(OvdIdsStackProvider.java:1350)
at com.oracle.ovd.arisid.ArisIdStackProvider.doFind(ArisIdStackProvider.java:175)
at org.openliberty.arisid.Interaction.doFind(Interaction.java:1022)
at oracle.igf.ids.arisid.ArisIdServiceManager.findEntity(ArisIdServiceManager.java:1616)
... 47 more

Cause

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!


In this Document
Symptoms
Cause
Solution
References


My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.