Password Reset In OIDDAS Fails With HTTP 403 Forbidden Error (Doc ID 415286.1)

Last updated on JULY 01, 2016

Applies to:

Oracle Internet Directory - Version: 10.1.2.0.2 and later   [Release: 10gR2 and later ]
Information in this document applies to any platform.

Symptoms

  • After the realm orcladmin password expired, attempting to change the password through DAS fails with:
    ERROR
    TRYING TO CHANGE PASSWORD WITH OIDDAS AND GET:FORBIDDEN:YOU DON'T HAVE PERMISSION

  • The password can be changed successfully using Oracle Directory Manager (oidadmin)
  • HTTP trace shows:
  • POST /sso/ChangePwdServlet HTTP/1.1
    ...
    HTTP/1.1 403 Forbidden
    Date: Wed, 14 Feb 2007 08:54:12 GMT
    Server: Oracle-Application-Server-10g/10.1.2.0.2 Oracle-HTTP-Server
    Keep-Alive: timeout=15, max=95
    Connection: Keep-Alive
    Transfer-Encoding: chunked
    Content-Type: text/html; charset=iso-8859-1

  • According to the opmn.xml file, the HTTP server is starting in SSL mode
  • The error.log shows:

     

    [OSSO] POST /sso/ChangePwdServlet HTTP/1.1\n
    access to /sso/ChangePwdServlet failed for <IP-ADDRESS>, reason: SSL connection required



Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms