OUD12c - EUS Authentication Failure Using AD with OUD Proxy where Trace File Ends with "kzld found userschema..."
(Doc ID 2449127.1)
Last updated on MARCH 21, 2024
Applies to:
Oracle Unified Directory - Version 12.2.1.3.0 and laterInformation in this document applies to any platform.
Symptoms
EUS Authentication Failure using AD with OUD proxy
When trying to authenticate successfully to the Oracle 12c database using OUD 12c to proxy to Active Directory, trace log ends with -
...
kzld_search -s sub -b
cn=OracleDefaultDomain,cn=OracleDBSecurity,cn=Products,cn=OracleContext,dc=<SUFFIX_DN>
search filter:
(&(objectclass=orcldbSubtreelevelMapping)(orclDBDistinguishedName=cn=Users,dc=<SUFFIX_DN>))
KZLD_ERR: 0
kzld found userschema GLOBAL_USER
kzld_search -s sub -b
cn=OracleDefaultDomain,cn=OracleDBSecurity,cn=Products,cn=OracleContext,dc=<SUFFIX_DN>
search filter:
(&(objectclass=orcldbSubtreelevelMapping)(orclDBDistinguishedName=cn=Users,dc=<SUFFIX_DN>))
KZLD_ERR: 0
kzld found userschema GLOBAL_USER
Due to this issue, users cannot authenticate through EUS.
The following error is another symptom:
ORA-01017: invalid username/password; logon denied
Cause
To view full details, sign in with your My Oracle Support account. |
|
Don't have a My Oracle Support account? Click to get started! |
In this Document
| Symptoms |
| Cause |
| Solution |
| References |