Oracle Access Manager (OAM) Unsolicited Login Flow With Password Policy and Second Factor Authentication Flow Fails "User authentication failed"
(Doc ID 2805999.1)
Last updated on FEBRUARY 03, 2023
Applies to:
Oracle Access Manager - Version 12.2.1.4.201201 and laterInformation in this document applies to any platform.
Symptoms
Unsolicited Login Flow With Password Policy and Second Factor Authentication Flow Fails "User authentication failed"
- Oracle Access Manager 12.2.1.4.201201
- Protected a resource with unsolicited authentication with password policy enabled and second factor authentication. Protected resource '/oamDirectAuthentication' with PasswordPolicyValidationScheme authentication scheme. And also, added AdaptiveAuthenticationScheme in Post-Authentication under Advanced Rules to trigger Second factor authentication.
- Authentication flow is breaking when password policy has parameters configure warn after.
- If user password is between warn after and before expire date, gets page where click continue can me selected to move without changing password and when user click on the link, should go to OTP page, but instead it redirected back to login page with invalid username and password error.
- This same functionality works if second factor is disabled.
- Users authentication failed if user password is falls between warn after and before expire date
Steps:
1. When a user access the protected resource with direct authentication page and enter user credentials and then clicked Continue button.
2. After successful authentication, user redirected to " Your password will expire in less than 24 hours " page ( pswd.jsp ) with two options.
option 1 is "Change your password now"
option 2 is "Click here to continue without changes"
3. When user choose option 1, user redirected " Change your password now " page and it has option to enter current, new and old password.
4. When user choose option 2, user got error message "Authentication failed". (Expected behavior is, user should able to land on the requested resource.)
Changes
Cause
To view full details, sign in with your My Oracle Support account. |
|
Don't have a My Oracle Support account? Click to get started! |
In this Document
| Symptoms |
| Changes |
| Cause |
| Solution |
| References |