Authentication Failure Error Resulting From Password Encryption (Doc ID 362740.1)

Last updated on MARCH 08, 2017

Applies to:

Oracle9iAS Single Sign-On - Version: 9.0.4.1.0 to 10.1.2.0.2
This problem can occur on any platform.

Symptoms

Users get "Authentication Failure"  Error when trying to log to any application e.g.  /oiddas.

The issue of authentication failure happens with the second step loaded users - meaning after the user adds their
passoword and uid. During the boatstrap steps which is the first step if the user has password and uid, the user gets
authenticated fine without any problem.

The user updates the password and uid using in-house built web-based application. And, here is where the problem happens.

The output of the comparison between both users: the one that works and the one that does not work:

userpassword attribute that has the authentication problem
userpassword: {SSHA}xmkPKah+L86czsIbskfpwzJX4e6IKkhQRT2QYA==

userpassword attributes that works fine
userpassword: {CRYPT}aKdvXCHmRN4Nk

Changes

Fact

AS10G 10.1.2.0.2
IPlanet is integrated with OID.

IPlanet users get synchronized at two steps :

1. first step is when loading the users with/without the password.
2. second step if the user does not have a password, the user updates the password thru in-house build web-based
application.

The first step is done using bootstrap. The second step is done using a web-based app.

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms