18c Active Directory Password Authentication Fails With ORA-28276 for Client Connections Below 12c
(Doc ID 2472256.1)
Last updated on JUNE 03, 2024
Applies to:
Oracle Database - Enterprise Edition - Version 18.1.0.0.0 and laterJDBC - Version 11.1.0.6 to 12.1.0.2.0 [Release 11.1 to 12.1]
Information in this document applies to any platform.
Symptoms
Version 18c of the database introduces the ability to authenticate incoming connections using Active Directory without EUS (Enterprise User Security) or some other intermediate directory service, as discussed here in the following documentation:
Release 18 Security Guide
Chapter 5: Configuring Centrally Managed Users with Microsoft Active Directory
Section: About Configuring Password Authentication for Centrally Managed Users
There are 3 authentication methods that can be configured: Password authentication; Kerberos authentication; or SSL authentication.
When using password authentication, 12.2.0.1 client connections, such as the 12.2.0.1 JDBC driver, is able to connect to the 18.x database.
However, when connecting using an older client connection, such as 11.2.0.4, the connection fails with the following error:
ORA-28276: Invalid ORACLE password attribute
Changes
Cause
To view full details, sign in with your My Oracle Support account. |
|
Don't have a My Oracle Support account? Click to get started! |
In this Document
| Symptoms |
| Changes |
| Cause |
| Solution |