10giAS oiddas, sso login problem using orcladmin user
Problem/Issue
I noticed I was not able to login to OID (http://hostname.domain.name:<port>/oiddas) and SSO (http://hostname.domain.name:<port>/sso) URL using orcladmin user.
I was able to validate orcladmin password using given below.
$ ldapbind -h <OID_SERVER> -p <LDAPPORT> -D cn=orcladmin -w <oldorcladmin password>
bind successful
Solution
To resolve above issue I have performed following.
- Unlock orcladmin account
[orassod@ios10901e] /opt02/app/oracle/ssodoid/10.1.0/ldap/bin
$ $ORACLE_HOME/ ldap/bin/oidpasswd connect=SSOD unlock_su_acct=true
OID DB user password:
OID super user account unlocked successfully.
This instance is already registered with OID Server. OID Registration will be skipped.
Noteà Supply old orcladmin password against "OID DB user password"
- Uncheck "Global Lockout" to avoid future lock out issue of orcladmin password
Start Oracle Directory Manager
Start à Programs à Oracle Home 1 à Integrated Management Tools à Oracle Directory Manger
Once GUI starts enter OID server hostport
Navigate to "Oracle Internet Directory Servers" à "Password Management Policy" à "Password Policy for Realm"
On right hand side click on "Account Lockout" tab and uncheck "Global Lockout" check box
- Reset orcladmin password
Start Oracle Directory Manager
Start à Programs à Oracle Home 1 à Integrated Management Tools à Oracle Directory Manger
Once GUI starts enter OID server host, LDAP port
Navigate to "Oracle Internet Directory Servers" à "Entry Management" à dc=<domain> à dc=<subdomin> à cn=Users
Click on Search button on Right hand side and search for user orcladmin
Double click on orcladmin search result "Entry: cn=orcladmin :" window would get open.
Scroll down to userpassword attribute and reset orcladmin password to old password and click on "OK" button and then "Apply" button
- Validate orcladmin password
http://<servername>.<domainname>:<port>/oiddas
http://<servername>.<domainname>:<port>/sso
No comments:
Post a Comment