Oid Not Maintaining Pwdchangedtime Attribute With Pre-Hashed Passwords (Doc ID 866035.1)

Last updated on MARCH 08, 2017

Applies to:

Oracle Internet Directory - Version: 10.1.4.3.0
This problem can occur on any platform.

Symptoms

OID is not maintaining the attribute pwdChangedTime when the password is provided pre-hashed:

- When a user is created with a pre-hashed value for the userPassword, no pwdChangedTime
attribute is created.
- When the userPassword attribute is updated with a pre-hashed value, the pwdChangedTime attribute
is not updated.

Synchronizing user entries from the iPlanet server including the userPassword attribute, which
contains the password SHA-hashes.

Users will change their passwords exclusively in iPlanet, so the passwords in OID will always be
updated with pre-hashed values - for the password policy this will look like the users have never
changed their passwords and after 3 Months all accounts will be locked...



Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms