Oracle Access Manager (OAM) Unsolicited Login Flow With Password Policy and Second Factor Authentication Flow Fails "User authentication failed"
(Doc ID 2805999.1)
Last updated on OCTOBER 25, 2021
Applies to:Oracle Access Manager - Version 126.96.36.199.201201 and later
Information in this document applies to any platform.
Unsolicited Login Flow With Password Policy and Second Factor Authentication Flow Fails "User authentication failed"
- Oracle Access Manager 188.8.131.52.201201
- Protected a resource with unsolicited authentication with password policy enabled and second factor authentication. Protected resource '/oamDirectAuthentication' with PasswordPolicyValidationScheme authentication scheme. And also, added AdaptiveAuthenticationScheme in Post-Authentication under Advanced Rules to trigger Second factor authentication.
- Authentication flow is breaking when password policy has parameters configure warn after.
- If user password is between warn after and before expire date, gets page where click continue can me selected to move without changing password and when user click on the link, should go to OTP page, but instead it redirected back to login page with invalid username and password error.
- This same functionality works if second factor is disabled.
- Users authentication failed if user password is falls between warn after and before expire date
1. When a user access the protected resource with direct authentication page and enter user credentials and then clicked Continue button.
2. After successful authentication, user redirected to " Your password will expire in less than 24 hours " page ( pswd.jsp ) with two options.
option 1 is "Change your password now"
option 2 is "Click here to continue without changes"
3. When user choose option 1, user redirected " Change your password now " page and it has option to enter current, new and old password.
4. When user choose option 2, user got error message "Authentication failed". (Expected behavior is, user should able to land on the requested resource.)
To view full details, sign in with your My Oracle Support account.
Don't have a My Oracle Support account? Click to get started!
In this Document