How to Ensure That All Forms RADs in OID Are Updated When The Related Database Password is Changed? (Doc ID 984922.1)

Last updated on AUGUST 30, 2023

Applies to:

Goal

How to synchronize the password stored in the Resource Access Descriptors (RADs) associated with Oracle Internet Directory (OID) user entries for Forms SSO-enabled login with the related database user/schema password?

Scenario: Single Sign-On (SSO) has been enabled for an Oracle Forms application. When a user account is created in OID Resource Access Descriptor details have to be supplied for connections to the Oracle database so that Forms can access the database after SSO login: Database User, Database Password and Connection String. These RAD details are stored in OID and associated with the OID/SSO user entry.

In this environment multiple OID user RADs may reference the same database schema - there is no unique database user ID for each OID user. 

When the database schema password expires, the Forms SSO user who next logs in with a RAD configured for that database schema is prompted to change/reset the expired password. Forms functionality will update the database schema password in the RAD associated with the user with the new password. This is described in <Note:248210.1> How Forms 9i and 10g Handle Database Password Expiry When Using Single Sign-On (SSO)?

However other OID users have RADs that reference the same database schema and these RADs are not updated with the new password. The result is that many Forms SSO users are unable to access SSO-enabled Forms until their RADs are manually updated in OID with the new database password.

How can this problem be avoided/resolved?

Solution

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.