OID 11g Modify of Userpassword through 3rd Party Application Fails "GslfbydpaDoProxyAuth: Error In Getting GUID For DN"
(Doc ID 2365228.1)
Last updated on AUGUST 30, 2023
Applies to:
Oracle Internet Directory - Version 11.1.1.9.0 and laterInformation in this document applies to any platform.
Symptoms
Attempting to change passwords through a 3rd party tool that uses Proxied Authorization Control (example PING Application)
will fail for some users. Changing the password using ldif file with ldapmodify is successful
Example from OID logs:
WORKING user:
ConnID:340640 mesgID:3398 OpID:3397 OpName:modify ConnIP:::ffff:<IP ADDRESS>:45962 ConnDN:cn=orcladmin,cn=users,dc=company,dc=com
gslfmeADoModify: modifications:
2017-11-29T11:51:54.562540 * replace: userpassword
2017-11-29T11:51:54.562552 * gslfmeADoModify:conn=340640 op=3397 MOD dn="cn=user1,ou=external,cn=users,dc=company,dc=com"
2017-11-29T11:51:54.563824 * Replacing userpassword in gslsbmApplyModtoEntry()
2017-11-29T11:51:54.563848 * Replacing authpassword in gslsbmApplyModtoEntry()
2017-11-29T11:51:54.563874 * Replacing orclpassword in gslsbmApplyModtoEntry()
2017-11-29T11:51:54.563893 * Replacing pwdchangedtime in gslsbmApplyModtoEntry()
2017-11-29T11:51:54.563906 * Replacing pwdfailuretime in gslsbmApplyModtoEntry()
2017-11-29T11:51:54.567892 * INFO:gsleswrASndResult OPtime=5473 micro sec RESULT=0 tag=103
NON-WORKING user:
ConnID:333887 mesgID:3921 OpID:3920 OpName:modify ConnIP:::ffff:<IP ADDRESS>:61383 ConnDN:cn=orcladmin,cn=users,dc=company,dc=com
gslfmeADoModify: modifications:
2017-11-29T11:53:17.9291 * replace: userpassword
2017-11-29T11:53:17.9304 * gslfmeADoModify:conn=333887 op=3920 MOD dn="cn=user2,cn=users,dc=company,dc=com"
2017-11-29T11:53:17.10228 * gslfbydpaDoProxyAuth: Error in getting GUID for DN cn=USER2,cn=users,dc=company,dc=com
END
[2017-11-29T11:53:17.10511+01:00] [OID] [TRACE:16] [] [OIDLDAPD] [host: eu012vm0678] [pid: 13169] [tid: 11] [ecid: <ECID>] ServerWorker (REG):[[
BEGIN
ConnID:333887 mesgID:3921 OpID:3920 OpName:modify ConnIP:::ffff:<IP ADDRESS>:61383 ConnDN:cn=orcladmin,cn=users,dc=company,dc=com
INFO:gsleswrASndResult OPtime=1422 micro sec RESULT=53 tag=103 nentries=0
END
Cause
To view full details, sign in with your My Oracle Support account. |
|
Don't have a My Oracle Support account? Click to get started! |
In this Document
Symptoms |
Cause |
Solution |
References |