Sybase expired password changed via JDBC ...

Similar Messages

• Error List for Password Changes via IDXML

  Maybe I missed this in the documentation or in this forum, but I'm looking for error messages related to password changes via IDXML. I thought they were in the configuration for the identity server, but a file search didn't turn them up. Anyone have a suggestion or know where they are listed?

  Hi Mark,
  Can't help you off the top of my head. This has to be a message catalog on the file system as there is no such data in the LDAP config data.
  Did you do your search with a good tool (err. not with the lame windows search feature)? I'd search /oblix/lang on both OIS and WebPass installs for the string in question.
  Mark

• Change expired password using oracle jdbc thin driver

  Hello,
  I have a java program that uses the oracle jdbc thin driver (ojdbc6 - version 11.2.0.3) for database connection. My question is if I have any possibility to change an expired password (java.sql.SQLException: ORA-28001: the password has expired) using the thin driver - NOT OCI?

  No - the thin driver doesn't have any password management features.

• Simple Interface expired password change prompt

  We have a population of users who access GW exclusively through WebAcc. Some of this population has jumped on the mobile device bandwagon and so we've directed them to the simple interface when accessing GW from a mobile device.
  Some of these mobile device users now exclusively use the simple interface on their tablet/phone to access GW and when their password is expired, are never presented with the password change dialogue.
  Ive verified when user with an expired password navigates directly to the simple interface url , https://gwserver/gw/webacc?User.interface=simple, either on a mobile device or desktop browser, IE, FF, Chrome, the user consumes a grace login and is taken directly to the simple interface mailbox.
  Resetting grace logins and navigating to the standard webacc interface the GW password change dialogue is presented as expected.
  GroupWise 8.0.1 webacc on netware. I think wed refrained from going to newer releases in fear of some nasty bugs in the subsequent versions, but Ive not kept current on issues with the latest release.
  I understand the next GW version with native mobile device templates is around the corner, but management may want to address this sooner.
  Is this failure to recognize password expiry in the simple interface a know behavior?
  Regards,
  Fdiaz

  On 8/8/2011 8:36 AM, vodobaas wrote:
  > We have a population of users who access GW exclusively through WebAcc.
  > Some of this population has jumped on the mobile device bandwagon and so
  > we've directed them to the simple interface when accessing GW from a
  > mobile device.
  > Some of these mobile device users now exclusively use the simple
  > interface on their tablet/phone to access GW and when their password is
  > expired, are never presented with the password change dialogue.
  >
  > Ive verified when user with an expired password navigates directly to
  > the simple interface url ,
  > https://gwserver/gw/webacc?User.interface=simple, either on a mobile
  > device or desktop browser, IE, FF, Chrome, the user consumes a grace
  > login and is taken directly to the simple interface mailbox.
  > Resetting grace logins and navigating to the standard webacc interface
  > the GW password change dialogue is presented as expected.
  > GroupWise 8.0.1 webacc on netware. I think wed refrained from going to
  > newer releases in fear of some nasty bugs in the subsequent versions,
  > but Ive not kept current on issues with the latest release.
  > I understand the next GW version with native mobile device templates is
  > around the corner, but management may want to address this sooner.
  >
  > Is this failure to recognize password expiry in the simple interface a
  > know behavior?
  >
  > Regards,
  > Fdiaz
  I'll ask.

• Expired password change

  it says my password has expired so i go to change it by typing in my old password and a new one but it doesnt let me the screen just shakes
  please help!

  I am not sure If I am allowed to post links but here is how you can reset your password on almost every MAC
  http://osxdaily.com/2010/08/10/forgot-mac-password-how-to-reset-mac-password/

• OWA 2013 Expired Password Change - not working

  We are in the process of moving mailboxes from our 2010 environment to our 2013 environment and are using the 2013 CAS as internet facing, for any mailboxes on 2010, requests are proxied through.
  We have the registry DWORD ChangeExpiredPasswordEnabled set to 1 in HKLM\SYSTEM\CurrentControlSet\Services\MSExchange OWA but this isn't working.
  It use to work perfectly well when we had the 2010 CAS server internet facing.
  Is this still supported in Exchange 2013?

  I opened up a case with Microsoft and we've done 2 things, not sure which has fixed it.
  1) On the password policy for the domain, set the min password age as 0 days (previously set as 1)
  2) On the CAS server, under IIS, Default Websit, OWA, Authentication and on Basic Authentication set the default domain to "\"
  This has resolved the issue for us. 
  I had the 1st suggestion done and running for a few days and it still would not work. The 2nd one, however, was the one that worked for me. Instructions below.
  1- Open IIS Manager on the CAS server.
  2- Navigate to "<Server Name>\Sites\Default Web Site\owa". Double-click "Authentication". Select "Basic Authentication". Make sure it is enabled. Click "Edit" in the far-right pane. Enter "\" into the "Default domain" field. Leave "Realm" field blank.
  Click "OK".
  3- Navigate to "<Server Name>\Sites\Default Web Site\owa\auth". Double-click "Authentication". Select "Basic Authentication". Make sure it is enabled. Mine was disabled. Click "Edit" in the far-right pane. It should pick-up the "\" through the
  hierarchy. Enter "\" into the "Default domain" field if it has not. Leave "Realm" field blank. Click "OK".
  4- Navigate back up to "<Server Name>" under "Start Page" in the left pane. Click on the server name to select the server. Click on "Restart" in the far-right pane to restart the web server.

• Expired Password Users can´t login into an RDP Connection

  Hi,
  we have some remote users that use .rdp files to connect directly to some remote applications. They don´t use RD WebApp.
  When their password are expired, they can´t logon.
  Is it possible to enable them to have the question asking then to change their password?
  Thankyou in advance.
  Fabio Martins MCDST/MCSA Brasil!!!

  Hi,
  Please describe exactly the behavior you are seeing as well as any error text the users are receiving.  What operating system version are the users running on their PCs, and what version of the Remote Desktop Client are they using?
  When starting the RemoteApp the user may click the Details button in the lower left corner.  This will give them a screen notifying them that their password has expired and giving the ability to change it.
  NOTE:  Allow connections only from computers running Remote Desktop with Network Level Authentication must be
  unchecked in RD Session Host Configuration--RDP-Tcp Properties--General tab or expired password changing will not work.  As always users should use their full user name (domain\username) when
  entering their credentials.
  Thanks.
  -TP

• Lost old Apple ID password,Apple ID request/did password change,still can't access old ID

  -Went to update some iPad Apps
  -Said I had to sign in with Apple ID
  -My OLD email/Apple ID showed with the prompt for the password
  -I entered what I thought the OLD ID password was
  -Prompt said it was wrong, tried options, still wrong
  -Prompt said I could change my password
  -Changed via an email sent by Apple to my NEW email/Apple ID
  -Went back to sign into my iPad under my OLD email/Apple ID with the new password
  -Still rejected. Most likely because the password change was for the NEW Apple ID but had to try.
  -Tested the NEW password under the new Apple ID and it worked
  -Soooo....I can't get into my apps, under the requested OLD Apple ID because I don't have the OLD password and there's no way to change the OLD password without knowing it. 
  -So now I can't update important apps such as iOS Numbers, iOS Pages and the like..........
  Any suggestions.................?

  Go here, find the instructions for your country and initiate a dialog with Apple in order to get their help.
  Contact Apple for help with Apple ID account security - Apple Support

• 802.1X cannot change expired password at login

  Hi all,
  I'm trying to roll out 802.1X authentication for wifi access at my company, however there's one major problem I can't for the life of me figure out. I'm not able to get the Macs to prompt for a password change when the password has expired at login.
  On Windows when you log in it will prompt you to change your password when it's expired. However on OSX when you're on the workstation login screen, you can see the wireless icon briefly connect, then it will think for a bit and the user cannot log in at all.
  OSX can definitely can change expired passwords via 802.1X, as if I log into a local account and connect to the wifi with the user whose password has expired, it will prompt to change it, and changes it successfully.
  I'm using NPS for RADIUS authentication against AD, and using Profile Manager in OSX Server to create the 802.1X profile.
  Does anyone have any experience with OSX and using WPA Enterprise/802.1X Profiles?
  Thanks!

  Hi,
  Can you post a screenshot for this situation?
  Sometimes, the third party credential provider would lead to some issue like this, I suggest you check the
   current credential provider via the following path:
  HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\LogonUI\SessionData\x\LastLoggedOnProvider
  You should compare the result with the values in the following path:
  HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\credential providers
  If the current value is third party credential provider, try to disable it:
  To disable the provider add a REG_DWORD value "Disabled"=1 to that provider’s CLSID subkey.
  The provider will be disabled on the next session creation (sessions are created when you log off, switch users, or reboot.
  If you have any feedback on our support, please click
  here
  Alex Zhao
  TechNet Community Support

• Changing expired password on a cbckend database from a frontend database

  I have a split database with an Oracle backend (BE) and MS Access frontend (FE). My question is how to reset an expired password on the BE from the FE.
  If I log on to the backend via sqlplus an error ORA-28001 (Password expired) occurs and the system immediately prompts for a new password before completing the login process.
  If I log on from the frontend I get the same ORA error from the BE, but as far as I can tell, I can't reset the password from the FE.
  I can capture the error fine at the FE and I am thinking that I could use this to open a dialog to reset the password and change it over the ODBC connection. The problem is that I need to get a connection to the BE database before sending a command to change the password from the FE, but since login cannot be completed from the FE, because of the expired password, I can't get an ALTER USER statement to execute on the BE to reset the password.
  Is there a way to change a pre-expired password on an Oracle backend database from a frontend database? I don't see this as an Oracle/Access problem but as a problem that exists for any split database.

  I have thought about this a little and I am thinking about keeping a table of password update information. I can use this to create a "soft" expired password, using an expiration date in the table for each account. If the password is expired by the database then we can just update it with sqlplus or one of the other options.
  As far as getting the organization to change it is waaaay to big and stupid to change their policy.

• Resetting expired password from JDBC

  Hi All,
  I would like to know if it is possible to change an expired password from a java client that uses JDBC (classes12.zip) "thin client" to connect to oracle database (8.1.7.4).
  Can we capture the "password expired" exception from the client and change the expired password from within the java client.
  The current connect string is --->
  Connection conn;
  DriverManager.registerDriver(new oracle.jdbc.driver.OracleDriver());
  conn = DriverManager.getConnection("jdbc:oracle:thin:@host:port:sid",user,pass);
  Is it possible to do something like this ???
  try {
  conn = DriverManager.getConnection("jdbc:oracle:thin:@host:port:sid",user,pass);
  catch ( SQLException sqle ) {
  if ( sqle.getErrorCode() == 28001 ) // i.e. passwd expired
  //1. ask user to enter the new passwd &
  //2. change it in the database.
  Is there any other way of doing this ??
  Thanks in advance
  Arun

  I haven't tried this, but there some things to think about.
  1) Have you tried to capture the Exception? Is it a problem?
  2) Have you tried to alter a password through JDBC? Is it a problem? To execute other DDL you have to use executeUpdate() I would assum that if you can do this it will also require an executeUpdate().
  Now assuming #1 and #2 are OK
  3) How are you going to change a password when the you cannot connect because the password has expired? Are you going to hard code another non-expired userid/password in the code (bad idea). Are you going to ask the user to enter some type of administrative userid/password that will allow them to change their password?
  Just some thoughts, sorry I cannot help more...

• Changing expired password

  Is it possible to change expired password from JDBC 2.0?

  By JS page, I'm assuming you mean JSP (Javaserver Page?)
  The answer greatly depends on the middle-tier technology you are using.. For example straight JDBC, BC4J etc..
  If you give more info on your middle tier technology we could probably help out better..
  -Chris

• Getting invalid username/ password when trying to change expired password

  I am using Oracle Database 11g Enterprise Edition Release 11.2.0.2.0 - 64bit Production.
  I created a user with password expire option and gave create session grant. When I tried to connect with the user it gives me password expired message as expected but when I try to put new password it gives me invalid username/password as show below. I have tried many times and made sure new password and retype new password are same and long enough.
  Could anyone please advice what am I missing?
  SQL> conn schu/xxx@abc
  ERROR:
  ORA-28001: the password has expired
  Changing password for schu
  New password: ********
  Retype new password: ********
  ERROR:
  ORA-01017: invalid username/password; logon denied
  Password unchanged
  SQL>

  spur230 wrote:
  sb92075 wrote:
  spur230 wrote:
  It works that way but I need to use password expire option.
  I see the words, but do not understand what they/you mean.The code you asked me to run work perfectly but I am getting ORA-01017 when I use password expire option.
  With your code if I do
  alter user schu password expire.
  It will ask me to enter new password and verify password after which I am getting
  ERROR:
  ORA-01017: invalid username/password; logon deniedI am not sure what you are doing & doing wrong; but it works OK for me.
  SQL> CREATE USER USER3 IDENTIFIED BY USER3 PASSWORD EXPIRE;
  User created.
  SQL> GRANT CREATE SESSION TO USER3;
  Grant succeeded.
  SQL> CONNECT USER3/USER3
  ERROR:
  ORA-28001: the password has expired
  Changing password for USER3
  New password:
  Retype new password:
  Password changed
  Connected.
  SQL> CONNECT USER3/USER4
  Connected.
  SQL> show user
  USER is "USER3"
  SQL>

• Cisco ISE - User with expired password is forced to logoff before they can change password.

  I came across a situation today where a user was logged into a laptop with an expired password and could not change it by simply locking the computer and logging in with the correct credentials. (They had previously changed it on their main computer) The port restricted any communication since the user was failing authentication.
  So, the I had the user logout and immediately the computer authenticated, and the user was able to login with the correct credentials.   I dont want my users to have to logout completely in this situation.  Below is the port config and the ISE error messages.
   switchport access vlan 423
   switchport mode access
   switchport block unicast
   switchport voice vlan 425
   ip arp inspection limit rate 10
   ip access-group ACL-LOW-IMPACT-MODE in
   authentication event fail action next-method
   authentication event server dead action authorize voice
   authentication event server alive action reinitialize
   authentication host-mode multi-auth
   authentication open
   authentication order dot1x mab
   authentication priority dot1x mab
   authentication port-control auto
   authentication periodic
   authentication timer reauthenticate server
   authentication timer inactivity server
   authentication violation restrict
   mab
   snmp trap mac-notification change added
   dot1x pae authenticator
   dot1x timeout tx-period 3600
   spanning-tree portfast
   spanning-tree bpduguard enable
   ip dhcp snooping limit rate 100

  Completely forgot about odac version. I have ODT with ODAC 102.02 installed.
  I want to download new drivers from here:
  Oracle10g Release 2 ODAC and Oracle Developer Tools for Visual Studio .NET
  http://download.oracle.com/otn/other/ole-oo4o/ODTwithODAC1020221.exe
  And old drivers from here (just for testing)
  Oracle Developer Tools for Visual Studio .NET 10.1.0.4.0
  http://download.oracle.com/otn/other/ODT10104.exe
  Does anybody know something about these releases? Do they have the same behavior?
  Thanks.

• Changing expired password with OCIPasswordChange

  I know that ODP.NET has a option to open a connection with a new password when the old one has expired. I'm using System.Data.OracleClient from .Net instead of ODP because I'm using the Instant Client, which does not seem to work with ODP. Can somebody tell me how to call OCIPasswordChange?

  Hi,
  OCIPasswordChange is an OCI call. You'd have to write a complete OCI application in C to be able to use that, and OCI coding isnt for the faint of heart.
  I do have a complete OCI sample that does it though.. here you go.
  Cheers,
  Greg
  This sample demonstrates the use of OCIPasswordChange once the
  password has expired, which requires setting the session into
  the service context. Tested with oci 8.1.5, vc++ 6.0 sp3.
  first create the user with expired password:
  SQL> create user testuser identified by oldpass password expire;
  SQL> grant create session to testuser;
  #include <stdio.h>
  #include <stdlib.h>
  #include <string.h>
  #include <oci.h>
  static OCIEnv          *p_env;
  static OCIError          *p_err;
  static OCIServer *p_srv;
  static OCISession *p_ses;
  static OCISvcCtx     *p_svc;
  void main()
       int          rc;
       char     errbuf[100];
       int          errcode;
       // Step 1: Initialize OCI
       rc = OCIInitialize((ub4) OCI_DEFAULT, (dvoid *)0,
            (dvoid * (*)(dvoid *, size_t)) 0,
            (dvoid * (*)(dvoid *, dvoid *, size_t))0,
            (void (*)(dvoid *, dvoid *)) 0 );
       // Step 2: Initialize the OCI evironment
       rc = OCIEnvInit( (OCIEnv **) &p_env, OCI_DEFAULT, (size_t) 0, (dvoid **) 0 );
       // Step 3: Initialize the OCI handles
       rc = OCIHandleAlloc( (dvoid *) p_env, (dvoid **) &p_err, OCI_HTYPE_ERROR,
            (size_t) 0, (dvoid **) 0);
       rc = OCIHandleAlloc( (dvoid *) p_env, (dvoid **) &p_svc, OCI_HTYPE_SVCCTX,
            (size_t) 0, (dvoid **) 0);
       rc = OCIHandleAlloc( (dvoid *) p_env, (dvoid **) &p_srv, OCI_HTYPE_SERVER,
            (size_t) 0, (dvoid **) 0);
       rc = OCIHandleAlloc((dvoid *) p_env, (dvoid **)&p_ses, (ub4) OCI_HTYPE_SESSION,
            (size_t) 0, (dvoid **) 0);
       // Step 4: Connect using a mutli-session connect
       rc = OCIServerAttach( p_srv, p_err,
            (text *)"local", 5, 0);
       // Create a server context
       rc = OCIAttrSet( (dvoid *) p_svc, OCI_HTYPE_SVCCTX,
            (dvoid *)p_srv, (ub4) 0,
            (ub4) OCI_ATTR_SERVER, (OCIError *) p_err);
       // Create a session context
       rc = OCIAttrSet((dvoid *) p_ses, (ub4) OCI_HTYPE_SESSION,
            (dvoid *) "testuser", (ub4) 8,
            (ub4) OCI_ATTR_USERNAME, p_err);
       rc = OCIAttrSet((dvoid *) p_ses, (ub4) OCI_HTYPE_SESSION,
            (dvoid *) "oldpass", (ub4) 7,
            (ub4) OCI_ATTR_PASSWORD, p_err);
       rc = OCIAttrSet((dvoid *) p_svc, (ub4) OCI_HTYPE_SVCCTX,
            (dvoid *) p_ses, (ub4) 0,
            (ub4) OCI_ATTR_SESSION, p_err);
       // Open the session on the server
       rc = OCISessionBegin ( p_svc, p_err, p_ses, OCI_CRED_RDBMS,
            (ub4) OCI_DEFAULT);
       // This is a generic error checking routine
       if (rc != 0)
            OCIErrorGet((dvoid *)p_err, (ub4) 1, (text *) NULL, &errcode,
                 (text*)errbuf, (ub4) sizeof(errbuf), OCI_HTYPE_ERROR);
            printf("Error - %.*s\n", 512, errbuf);
            // If the error is a 28001, change the password.
            if(errcode==28001)
                 // You need to set the Session into the service context
                 // before you can call OCIPasswordChange(), and you also need
                 // to allocate both the session and service context handles
                 // before hand. Then you can call OCIPasswordChange.
                 rc = OCIAttrSet((dvoid *)p_svc, OCI_HTYPE_SVCCTX,
                      (dvoid *)p_ses,0,OCI_ATTR_SESSION, p_err);
                 rc = OCIPasswordChange(p_svc, p_err, "testuser",8,
                      "oldpass",7, "newpass",8, OCI_DEFAULT);
                 if(rc != 0) printf("Password change failed.\n");
                 else printf("Password successfully changed.\n");
       // Step 10: Disconnect from the server and free the
       rc = OCIServerDetach( p_srv, p_err, OCI_DEFAULT );
       rc = OCIHandleFree((dvoid *) p_srv, OCI_HTYPE_SERVER);
       rc = OCIHandleFree((dvoid *) p_svc, OCI_HTYPE_SVCCTX);
       rc = OCIHandleFree((dvoid *) p_err, OCI_HTYPE_ERROR);
       printf("Disconnected.\n\n");
       return;
  }