Last updated on MARCH 08, 2017
Applies to:Oracle Internet Directory - Version 10.1.2 and later
Information in this document applies to any platform.
Checked for relevace 29/01/2013
How to synchronize the password stored in the Resource Access Descriptors (RADs) associated with Oracle Internet Directory (OID) user entries for Forms SSO-enabled login with the related database user/schema password?
Scenario: Single Sign-On (SSO) has been enabled for an Oracle Forms application. When a user account is created in OID Resource Access Descriptor details have to be supplied for connections to the Oracle database so that Forms can access the database after SSO login: Database User, Database Password and Connection String. These RAD details are stored in OID and associated with the OID/SSO user entry.
In this environment multiple OID user RADs may reference the same database schema - there is no unique database user ID for each OID user.
When the database schema password expires, the Forms SSO user who next logs in with a RAD configured for that database schema is prompted to change/reset the expired password. Forms functionality will update the database schema password in the RAD associated with the user with the new password. This is described in <Note:248210.1> How Forms 9i and 10g Handle Database Password Expiry When Using Single Sign-On (SSO)?
However other OID users have RADs that reference the same database schema and these RADs are not updated with the new password. The result is that many Forms SSO users are unable to access SSO-enabled Forms until their RADs are manually updated in OID with the new database password.
How can this problem be avoided/resolved?
Sign In with your My Oracle Support account
Don't have a My Oracle Support account? Click to get started
Million Knowledge Articles and hundreds of Community platforms