LDAP Users Synchronize but Fail to Login with Error: "Invalid username or password"

(Doc ID 783518.1)

Last updated on AUGUST 21, 2016

Applies to:

Oracle Agile PLM Framework - Version and later
Information in this document applies to any platform.
***Checked for relevance on 26-July-2012***


LDAP Users Synchronize Properly but fail authentication with Error: Invalid username or password

LDAP User Preview also works without any issues.  Authentication error is as follows:

<AppException:ERROR> Invalid username or password.

com.agile.admin.ldap.DirServiceException: Invalid username or password. 

<DirService:ERROR> Login failed for user : AUserName
Actual message : Missing 'equals'
javax.naming.directory.InvalidSearchFilterException: Missing 'equals'; remaining name 'OU=Distribution Lists,DC=your,DC=domain,DC=com'
  at com.sun.jndi.ldap.Filter.encodeSimpleFilter(Filter.java:305)
  at com.sun.jndi.ldap.Filter.encodeFilter(Filter.java:126)
  at com.sun.jndi.ldap.Filter.encodeFilterList(Filter.java:522)
  at com.sun.jndi.ldap.Filter.encodeComplexFilter(Filter.java:442)
  at com.sun.jndi.ldap.Filter.encodeFilter(Filter.java:87)


Configured LDAP to Synchronize using Groups, with a configuration similar to the following (In Java Client > Admin > Server Settings > LDAP node)

ID - Agile001
Description - LDAP 1
Agent - ActiveDirectory
URL - ldap://domaincontroller.domain.com:389
Domain - domain.com
Username - user@domain.com
Password - 88B022222222E31E053E
User Path -
Search Scope -
Search Filter -
Mechanism -
Group Path - OU=Groups,DC=domain,DC=com
Group Scope - SUB_TREE
Group Filter - (|(CN=group1)(CN=group2)(CN=group3))
Group Membership -
Dynamic Group Filter -


Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms