Oracle Portal – Password Policy Problem
LDAP: error code 49 – Password Policy Error :9000: GSL_PWDEXPIRED_EXCP :Your Password has expired. Please contact the Administrator to change your password.
This is the Exception we were getting in the test server; this error will prevent any eservices actions to be performed. In our eservices actions, we are using PUBLIC user account to perform some LDAP operations. If anything wrong happen with this account the eservices action will fail.
PASSWORD POLICY ERROR: 9000: GSL_PWDEXPIRED_EXCP
The default value for Password Expiry Time is set to 5184000 that is, 60 days. After 60 days from the installation date, the passwords for the Oracle directory server (and any other assigned passwords) automatically expire. Soon after password expiration, this repeated trying causes the connector to exceed the max grace logins exceeded, and the account to become locked.
Cause: Beginning with Release 9.0.4, the pwdmaxage attributes of the password policies are defaulted to time value of 60 days.
Action: Do the following:
-
Use oidpasswd utility to unlock the orcladmin account (If this account is locked):
You have to set ORACLE_HOME
-
Launch the Oracle Directory Manager (must be a release 10g client), login using orcladmin account, and write the IP address for OID server
-
Navigate to Password Policy Management.
You will see two entries: cn=PwdPolicyEntry and the password policy for out realm, Password Policy for Realm dc=company,dc=com.
Edit each of these, changing the pwdmaxage attribute to an appropriate value:
- 5184000 = 60 days (default)
- 7776000 = 90 days
- 10368000 = 120 days
- 15552000 = 180 days
- 31536000 = 1 year
- 0 = Infinity
In: IT, Oracle · Tagged with: issue, Oracle, Password, Portal