OID Password Policy Expires, Password Resetting Password Still Fails (Doc ID 272248.1)

Last updated on JULY 01, 2016

Applies to:

Oracle Internet Directory - Version 10.1.2.0.2 to 11.1.1.6.0 [Release 10gR2 to 11g]
Information in this document applies to any platform.
**** Checked for Currency 17 Feb 2015 ****

Symptoms

When a user logs in they receive error:  "Your Password Has Expired - Please Check With Your Administrator". The complete error may look like this:

 

 

When logging in to Oracle Internet Directory Delegated Admin Service (OIDDAS) via Oracle Single Sign On (SSO) as orcladmin to reset the user's password, the same error message is received.

An OID superuser bind...e.g.   cn=orcladmin  may or may not succeed depending on whether the superuser account was also locked. 

OR

ldapbind as superuser or realm orcladmin fails with:
$ ldapbind -h oidhost -p oidport -D "cn=orcladmin,cn=users, dc=mycompany,dc=com" -w <password>
ldap_bind: Invalid credentials
ldap_bind: additional info: Password Policy Error :9000: GSL_PWDEXPIRED_EXCP :Your Password has expired. Please contact the Administrator to change your password.

 

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms