My Oracle Support Banner

Oracle Access Manager OAM 11.1.2.3 - While Accessing the Application, Login Fails with the Error: User Account Locked or Deactivated Contact System Administrator (Doc ID 2543873.1)

Last updated on MAY 24, 2022

Applies to:

Oracle Access Manager - Version 11.1.2.3.181016 and later
Information in this document applies to any platform.
Oracle is not responsible for instructions/information from 3rd party sites that may be contained in this KM note

Symptoms

On : 11.1.2.3.181016 version, Configuration Service

Login fails with error and the issue happening only one specific user and all other able to access the application.

the following error occurs.

ERROR
-----------------------
[<OAM_SERVER_NAME>] [ERROR] [OAMSSA-20023] [oracle.oam.user.identity.provider] [tid: [ACTIVE].ExecuteThread: '3' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: ]                        [APP: oam_server#11.1.2.0.0] Authentication Failure for user : <USER>, for idstore <IDSTORE_NAME> with exception oracle.igf.ids.AuthenticationException: Authentication failed for user cn=<USER>,ou=<ORG_UNIT>,dc=<COMPANY>,dc=<DOMAIN>. AdditionalInfo: LDAP Error 48 : [LDAP: error code 48 - Server is Configured to Deny Anonymous Binds] with primary error message LDAP Error 48 : [LDAP: error code 48 - Server is Configured to Deny Anonymous Binds]
<OAM_SERVER_NAME>-diagnostic.log:Caused by: oracle.security.am.engines.common.identity.provider.exceptions.IdentityProviderException: OAMSSA-20023: Authentication Failure for user : USER, for idstore <IDSTORE_NAME> with exception oracle.igf.ids.AuthenticationException: Authentication failed for user cn=<USER>,ou=<ORG_UNIT>,dc=<COMPANY>,dc=<DOMAIN>. AdditionalInfo: LDAP Error 48 : [LDAP: error code 48 - Server is Configured to Deny Anonymous Binds] with primary error message LDAP Error 48 : [LDAP: error code 48 - Server is Configured to Deny Anonymous Binds]
<OAM_SERVER_NAME>-diagnostic.log:Caused by: oracle.igf.ids.AuthenticationException: Authentication failed for user cn=<USER>,ou=<ORG_UNIT>,dc=<COMPANY>,dc=<DOMAIN>. AdditionalInfo: LDAP Error 48 : [LDAP: error code 48 - Server is Configured to Deny Anonymous Binds]
<OAM_SERVER_NAME>-diagnostic.log:Caused by: oracle.igf.ids.arisid.ArisIdAuthException: Authentication failed for user cn=<USER>,ou=<ORG_UNIT>,dc=<COMPANY>,dc=<DOMAIN>. AdditionalInfo: LDAP Error 48 : [LDAP: error code 48 - Server is Configured to Deny Anonymous Binds]



Error on the UI:
============
User account locked or deactivated contact system administrator

STEPS
-----------------------
The issue can be reproduced at will with the following steps:
1. Login with user
2. Fails with error:
User account locked or deactivated contact system administrator

Note:
The value for Anonymous Binds is Allows in the OID server properties.

BUSINESS IMPACT
-----------------------
The issue has the following business impact:
Due to this issue, users cannot login with specific user

Changes

 

Cause

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!


In this Document
Symptoms
Changes
Cause
Solution
References


My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.