After Changing a User Password in Oidadmin/OID 10g, ldapbind Fails with Invalid Credentials. A ldapsearch Returns Strange/Weird Characters for the Userpassword Value
(Doc ID 789096.1)
Last updated on MARCH 13, 2019
Applies to:
Oracle Internet Directory - Version 10.1.4.0.1 to 10.1.4.2 [Release 10gR3]Information in this document applies to any platform.
Symptoms
After changing a user password in Oracle Internet Directory (OID) 10.1.4.0.1 or 10.1.4.2, Oracle Directory Manager (oidadmin Java GUI tool), a bind fails with "invalid credentials" and a search shows the userpassword value with weird characters.
Steps to reproduce:
- Create a user, i.e. userB, like an existing/working userA, and set a userpassword such as Password1!
- Test a bind and a search against the user, and it shows the correct password, i.e.:
a. ldapbind -h <oid host> -p <port> -D "cn=userB,cn=users,dc=mycompany,dc=com" -w Password1!
> bind successful
b. ldapsearch -h <oid host> -p <port> -D cn=orcladmin" -w <password> -b "cn=userB,cn=users,dc=mycompany,dc=com" -L objectclass=* userpassword
> userpassword: Password1!
- Log into oidadmin, change the password to, i.e., Password2! for the userB.
- Run the same bind and search commands again, the bind fails and now the userpassword shows with strange characters, i.e.:
a. ldapbind -h <oid host> -p <port> -D "cn=userB,cn=users,dc=mycompany,dc=com" -w Password2!
> ldap_bind: Invalid credentials
b. ldapsearch -h <oid host> -p <port> -D cn=orcladmin" -w <password> -b "cn=userB,cn=users,dc=mycompany,dc=com" -L objectclass=* userpassword
> userpassword:: IA==
Additional Symptom: Attempting to login to SSO gives the following error in the web browser:
Error: Authentication failed. Please try again.
Cause
To view full details, sign in with your My Oracle Support account. |
|
Don't have a My Oracle Support account? Click to get started! |
In this Document
Symptoms |
Cause |
Solution |
References |