Oid Not Maintaining Pwdchangedtime Attribute With Pre-Hashed Passwords

(Doc ID 866035.1)

Last updated on MARCH 08, 2017

Applies to:

Oracle Internet Directory - Version:
This problem can occur on any platform.


OID is not maintaining the attribute pwdChangedTime when the password is provided pre-hashed:

- When a user is created with a pre-hashed value for the userPassword, no pwdChangedTime
attribute is created.
- When the userPassword attribute is updated with a pre-hashed value, the pwdChangedTime attribute
is not updated.

Synchronizing user entries from the iPlanet server including the userPassword attribute, which
contains the password SHA-hashes.

Users will change their passwords exclusively in iPlanet, so the passwords in OID will always be
updated with pre-hashed values - for the password policy this will look like the users have never
changed their passwords and after 3 Months all accounts will be locked...


Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms