My Oracle Support Banner

OUD11g/12c - Changing Replication JDK Keystore Breaking AES Password Encryption (Doc ID 2478305.1)

Last updated on NOVEMBER 30, 2018

Applies to:

Oracle Unified Directory - Version 11.1.2.3.1 and later
Information in this document applies to any platform.

Symptoms

Having userpassword with AES password storage scheme,

For example: 

dn: uid=user.9,ou=People,dc=example,dc=com
userpassword: {AES}AS8LVy3UOUELqujNqW1o1iRJpOvf6hRHiNVPQoum1bsZ1CU1f7KaUTI=

But after the ads-keystore has been re-created, unable use the same password to authenticate. 

$./ldapsearch -p 1389 -D "uid=user.9,ou=People,dc=example,dc=com" -w
Welcome1 -b "" -s base "objectclass=*"
The simple bind attempt failed
Result Code:  49 (Invalid Credentials)

  

Changes

The ads-keystore and ads-keystore have been re-created 

Cause

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!


In this Document
Symptoms
Changes
Cause
Solution
References


My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.