Weblogic Password Expiration

Similar Messages

• Weblogic 9.2 password expiration Ldap

  Good morning,
  How do I configure expiration password in weblogic ldap ?
  Thanks all.

  There are some discussions about this, but I've never had a customer implement a feature like this using the embedded LDAP. See some of the comments here:
  http://java-x.blogspot.com/2006/11/configuring-ldap-in-weblogic.html
  My advice is to consider an enterprise identity management solution like Oracle Internet Directory or Oracle Directory Server Enterprise Edition (formerly Sun Java Directory Server Enterprise Edition). The embedded LDAP feature of WebLogic is not intended to be used in place of a directory server for an enterprise. If you have a directory server that supports password expiration, then configure WebLogic to point to one of those directory servers.
  http://www.oracle.com/us/products/middleware/identity-management/oracle-directory-services/index.html

• Database Error when starting UCM - Password Expired?

  I'm getting a database error (see full stack below) when I try to start UCM after Weblogic. I was not having this problem before. When digging through the stack trace (below) I notice one of the error its outputting is that my password expired. However, I'm able to connect to the database using SQL Plus just fine, and even changed the system password just to be safe. Same error. I tried researching the issue even further: tried following this - http://kishantha.blogspot.com/2010/03/oracle-enterprise-manager-console.html , but when i ran the 'emctl stop dbconsole' i got a config issue, which led me to a different blog post when i tried running 'dbca' to configure and it gave me the following error - "Listener is not up or database service is not registered with it. Start the Listener and register database service and run EM Configuration Assistant again" although from what I can tell my listener is running just fine. what could possibly be going wrong here? any help would be appreciated!
  [2012-02-13T12:39:32.115-05:00] [UCM_server1] [NOTIFICATION] [UCM-CS-000001] [oracle.ucm.idccs] [tid: [ACTIVE].ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'] [ecid: 0000JLrn0xj3z0WjLxyGOA1FEKe^000002,0] [APP: Oracle Universal Content Management - Content Server] general exception
  [2012-02-13T13:26:43.479-05:00] [UCM_server1] [ERROR] [UCM-CS-000001] [oracle.ucm.idccs] [tid: [ACTIVE].ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'] [ecid: 0000JLrxs2a3z0WjLxyGOA1FELN9000002,0] [APP: Oracle Universal Content Management - Content Server] general exception
  [2012-02-13T13:26:43.510-05:00] [UCM_server1] [ERROR] [UCM-CS-000001] [oracle.ucm.idccs] [tid: [ACTIVE].ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'] [ecid: 0000JLrxs2a3z0WjLxyGOA1FELN9000002,0] [APP: Oracle Universal Content Management - Content Server] general exception[[
  java.lang.AssertionError: !syNativeOsUtilsNotLoaded
       at intradoc.common.NativeOsUtilsBase.doLoad(NativeOsUtilsBase.java:386)
       at intradoc.common.NativeOsUtilsBase.<init>(NativeOsUtilsBase.java:352)
       at intradoc.common.NativeOsUtils.<init>(NativeOsUtils.java:26)
       at intradoc.common.EnvUtils.initializeOsFlags(EnvUtils.java:169)
       at intradoc.common.EnvUtils.getOSFamily(EnvUtils.java:475)
       at intradoc.shared.SharedLoader.configureBufferPoolUsage(SharedLoader.java:644)
       at intradoc.shared.SharedLoader.loadInitialConfig(SharedLoader.java:230)
       at intradoc.server.IdcSystemConfig.loadAppConfigInfo(IdcSystemConfig.java:370)
       at intradoc.server.IdcSystemConfig.loadAppConfigInfo(IdcSystemConfig.java:259)
       at intradoc.server.IdcServerManager.init(IdcServerManager.java:100)
       at intradoc.idcwls.IdcServletRequestUtils.initializeServer(IdcServletRequestUtils.java:624)
       at intradoc.idcwls.IdcServletRequestUtils.initializeServer(IdcServletRequestUtils.java:455)
       at intradoc.idcwls.IdcIntegrateWrapper.initializeServer(IdcIntegrateWrapper.java:102)
       at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
       at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
       at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
       at java.lang.reflect.Method.invoke(Method.java:597)
       at idcservlet.common.IdcMethodHolder.invokeMethod(IdcMethodHolder.java:87)
       at idcservlet.common.ClassHelperUtils.executeMethodEx(ClassHelperUtils.java:305)
       at idcservlet.common.ClassHelperUtils.executeMethodWithArgs(ClassHelperUtils.java:278)
       at idcservlet.ServletUtils.initializeContentServer(ServletUtils.java:1242)
       at idcservlet.ServletUtils.startAndConfigureServer(ServletUtils.java:542)
       at idcservlet.ServletUtils.initializeAllServers(ServletUtils.java:455)
       at idcservlet.IdcFilter.initContentServer(IdcFilter.java:132)
       at idcservlet.IdcFilter.init(IdcFilter.java:124)
       at weblogic.servlet.internal.FilterManager$FilterInitAction.run(FilterManager.java:332)
       at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:321)
       at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:120)
       at weblogic.servlet.internal.FilterManager.loadFilter(FilterManager.java:98)
       at weblogic.servlet.internal.FilterManager.preloadFilters(FilterManager.java:59)
       at weblogic.servlet.internal.WebAppServletContext.preloadResources(WebAppServletContext.java:1876)
       at weblogic.servlet.internal.WebAppServletContext.start(WebAppServletContext.java:3153)
       at weblogic.servlet.internal.WebAppModule.startContexts(WebAppModule.java:1508)
       at weblogic.servlet.internal.WebAppModule.start(WebAppModule.java:482)
       at weblogic.application.internal.flow.ModuleStateDriver$3.next(ModuleStateDriver.java:425)
       at weblogic.application.utils.StateMachineDriver.nextState(StateMachineDriver.java:52)
       at weblogic.application.internal.flow.ModuleStateDriver.start(ModuleStateDriver.java:119)
       at weblogic.application.internal.flow.ScopedModuleDriver.start(ScopedModuleDriver.java:200)
       at weblogic.application.internal.flow.ModuleListenerInvoker.start(ModuleListenerInvoker.java:247)
       at weblogic.application.internal.flow.ModuleStateDriver$3.next(ModuleStateDriver.java:425)
       at weblogic.application.utils.StateMachineDriver.nextState(StateMachineDriver.java:52)
       at weblogic.application.internal.flow.ModuleStateDriver.start(ModuleStateDriver.java:119)
       at weblogic.application.internal.flow.StartModulesFlow.activate(StartModulesFlow.java:27)
       at weblogic.application.internal.BaseDeployment$2.next(BaseDeployment.java:636)
       at weblogic.application.utils.StateMachineDriver.nextState(StateMachineDriver.java:52)
       at weblogic.application.internal.BaseDeployment.activate(BaseDeployment.java:205)
       at weblogic.application.internal.EarDeployment.activate(EarDeployment.java:58)
       at weblogic.application.internal.DeploymentStateChecker.activate(DeploymentStateChecker.java:161)
       at weblogic.deploy.internal.targetserver.AppContainerInvoker.activate(AppContainerInvoker.java:79)
       at weblogic.deploy.internal.targetserver.BasicDeployment.activate(BasicDeployment.java:184)
       at weblogic.deploy.internal.targetserver.BasicDeployment.activateFromServerLifecycle(BasicDeployment.java:361)
       at weblogic.management.deploy.internal.DeploymentAdapter$1.doActivate(DeploymentAdapter.java:51)
       at weblogic.management.deploy.internal.DeploymentAdapter.activate(DeploymentAdapter.java:200)
       at weblogic.management.deploy.internal.AppTransition$2.transitionApp(AppTransition.java:30)
       at weblogic.management.deploy.internal.ConfiguredDeployments.transitionApps(ConfiguredDeployments.java:240)
       at weblogic.management.deploy.internal.ConfiguredDeployments.activate(ConfiguredDeployments.java:169)
       at weblogic.management.deploy.internal.ConfiguredDeployments.deploy(ConfiguredDeployments.java:123)
       at weblogic.management.deploy.internal.DeploymentServerService.resume(DeploymentServerService.java:180)
       at weblogic.management.deploy.internal.DeploymentServerService.start(DeploymentServerService.java:96)
       at weblogic.t3.srvr.SubsystemRequest.run(SubsystemRequest.java:64)
       at weblogic.work.ExecuteThread.execute(ExecuteThread.java:209)
       at weblogic.work.ExecuteThread.run(ExecuteThread.java:178)
  Caused by: java.lang.UnsatisfiedLinkError: intradoc.common.NativeOsUtilsBase.getNativeVersion()Ljava/lang/String;
       at intradoc.common.NativeOsUtilsBase.getNativeVersion(Native Method)
       at intradoc.common.NativeOsUtilsBase.doLoad(NativeOsUtilsBase.java:382)
       ... 61 more
  [2012-02-13T13:26:55.063-05:00] [UCM_server1] [ERROR] [] [oracle.ucm.idccs] [tid: [ACTIVE].ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'] [ecid: 0000JLrxs2a3z0WjLxyGOA1FELN9000002,0] [APP: Oracle Universal Content Management - Content Server] UCM-CS-050021
  [2012-02-13T13:26:55.078-05:00] [UCM_server1] [ERROR] [UCM-CS-000001] [oracle.ucm.idccs] [tid: [ACTIVE].ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'] [ecid: 0000JLrxs2a3z0WjLxyGOA1FELN9000002,0] [APP: Oracle Universal Content Management - Content Server] general exception[[
  intradoc.common.ServiceException: !csProviderUnableToInitialize,SystemDatabase
  at intradoc.server.IdcSystemLoader.loadProviders(IdcSystemLoader.java:2379)
  at intradoc.server.IdcSystemLoader.initProviders(IdcSystemLoader.java:2132)
  at intradoc.server.IdcSystemLoader.finishInit(IdcSystemLoader.java:401)
  at intradoc.server.IdcSystemLoader.init(IdcSystemLoader.java:336)
  at intradoc.server.IdcServerManager.init(IdcServerManager.java:120)
  at intradoc.idcwls.IdcServletRequestUtils.initializeServer(IdcServletRequestUtils.java:624)
  at intradoc.idcwls.IdcServletRequestUtils.initializeServer(IdcServletRequestUtils.java:455)
  at intradoc.idcwls.IdcIntegrateWrapper.initializeServer(IdcIntegrateWrapper.java:102)
  at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
  at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
  at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
  at java.lang.reflect.Method.invoke(Method.java:597)
  at idcservlet.common.IdcMethodHolder.invokeMethod(IdcMethodHolder.java:87)
  at idcservlet.common.ClassHelperUtils.executeMethodEx(ClassHelperUtils.java:305)
  at idcservlet.common.ClassHelperUtils.executeMethodWithArgs(ClassHelperUtils.java:278)
  at idcservlet.ServletUtils.initializeContentServer(ServletUtils.java:1242)
  at idcservlet.ServletUtils.startAndConfigureServer(ServletUtils.java:542)
  at idcservlet.ServletUtils.initializeAllServers(ServletUtils.java:455)
  at idcservlet.IdcFilter.initContentServer(IdcFilter.java:132)
  at idcservlet.IdcFilter.init(IdcFilter.java:124)
  at weblogic.servlet.internal.FilterManager$FilterInitAction.run(FilterManager.java:332)
  at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:321)
  at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:120)
  at weblogic.servlet.internal.FilterManager.loadFilter(FilterManager.java:98)
  at weblogic.servlet.internal.FilterManager.preloadFilters(FilterManager.java:59)
  at weblogic.servlet.internal.WebAppServletContext.preloadResources(WebAppServletContext.java:1876)
  at weblogic.servlet.internal.WebAppServletContext.start(WebAppServletContext.java:3153)
  at weblogic.servlet.internal.WebAppModule.startContexts(WebAppModule.java:1508)
  at weblogic.servlet.internal.WebAppModule.start(WebAppModule.java:482)
  at weblogic.application.internal.flow.ModuleStateDriver$3.next(ModuleStateDriver.java:425)
  at weblogic.application.utils.StateMachineDriver.nextState(StateMachineDriver.java:52)
  at weblogic.application.internal.flow.ModuleStateDriver.start(ModuleStateDriver.java:119)
  at weblogic.application.internal.flow.ScopedModuleDriver.start(ScopedModuleDriver.java:200)
  at weblogic.application.internal.flow.ModuleListenerInvoker.start(ModuleListenerInvoker.java:247)
  at weblogic.application.internal.flow.ModuleStateDriver$3.next(ModuleStateDriver.java:425)
  at weblogic.application.utils.StateMachineDriver.nextState(StateMachineDriver.java:52)
  at weblogic.application.internal.flow.ModuleStateDriver.start(ModuleStateDriver.java:119)
  at weblogic.application.internal.flow.StartModulesFlow.activate(StartModulesFlow.java:27)
  at weblogic.application.internal.BaseDeployment$2.next(BaseDeployment.java:636)
  at weblogic.application.utils.StateMachineDriver.nextState(StateMachineDriver.java:52)
  at weblogic.application.internal.BaseDeployment.activate(BaseDeployment.java:205)
  at weblogic.application.internal.EarDeployment.activate(EarDeployment.java:58)
  at weblogic.application.internal.DeploymentStateChecker.activate(DeploymentStateChecker.java:161)
  at weblogic.deploy.internal.targetserver.AppContainerInvoker.activate(AppContainerInvoker.java:79)
  at weblogic.deploy.internal.targetserver.BasicDeployment.activate(BasicDeployment.java:184)
  at weblogic.deploy.internal.targetserver.BasicDeployment.activateFromServerLifecycle(BasicDeployment.java:361)
  at weblogic.management.deploy.internal.DeploymentAdapter$1.doActivate(DeploymentAdapter.java:51)
  at weblogic.management.deploy.internal.DeploymentAdapter.activate(DeploymentAdapter.java:200)
  at weblogic.management.deploy.internal.AppTransition$2.transitionApp(AppTransition.java:30)
  at weblogic.management.deploy.internal.ConfiguredDeployments.transitionApps(ConfiguredDeployments.java:240)
  at weblogic.management.deploy.internal.ConfiguredDeployments.activate(ConfiguredDeployments.java:169)
  at weblogic.management.deploy.internal.ConfiguredDeployments.deploy(ConfiguredDeployments.java:123)
  at weblogic.management.deploy.internal.DeploymentServerService.resume(DeploymentServerService.java:180)
  at weblogic.management.deploy.internal.DeploymentServerService.start(DeploymentServerService.java:96)
  at weblogic.t3.srvr.SubsystemRequest.run(SubsystemRequest.java:64)
  at weblogic.work.ExecuteThread.execute(ExecuteThread.java:209)
  at weblogic.work.ExecuteThread.run(ExecuteThread.java:178)
  Caused by: intradoc.data.DataException: !csDbUnableToInitalize,SystemDatabase!csProviderFailedToExtractAndUseDataSource,CSDS
  at intradoc.jdbc.JdbcManager.init(JdbcManager.java:92)
  at intradoc.jdbc.JdbcWorkspace.init(JdbcWorkspace.java:77)
  at intradoc.provider.Provider.init(Provider.java:71)
  at intradoc.server.IdcSystemLoader.loadProviders(IdcSystemLoader.java:2369)
  ... 56 more
  Caused by: intradoc.data.DataException: !csProviderFailedToExtractAndUseDataSource,CSDS
  at intradoc.provider.ProviderPoolManager.init(ProviderPoolManager.java:134)
  at intradoc.jdbc.JdbcManager.init(JdbcManager.java:79)
  ... 59 more
  Caused by: intradoc.common.ServiceException: !csProviderFailedToAccessDataSource
  at intradoc.provider.ProviderPoolManager.computeExternalConnectionObject(ProviderPoolManager.java:263)
  at intradoc.provider.ProviderPoolManager.init(ProviderPoolManager.java:130)
  ... 60 more
  Caused by: intradoc.common.ServiceException: !csUnableToExecMethod,getConnection
  at intradoc.common.ClassHelperUtils.convertToStandardException(ClassHelperUtils.java:202)
  at intradoc.common.ClassHelperUtils.convertToStandardExceptionAndThrow(ClassHelperUtils.java:179)
  at intradoc.common.ClassHelperUtils.executeIdcMethodConvertToStandardExceptions(ClassHelperUtils.java:410)
  at intradoc.provider.ProviderPoolManager.getExternalRawConnection(ProviderPoolManager.java:945)
  at intradoc.provider.ProviderPoolManager.computeExternalConnectionObject(ProviderPoolManager.java:243)
  ... 61 more
  Caused by: weblogic.jdbc.extensions.ConnectionDeadSQLException: weblogic.common.resourcepool.ResourceDeadException: 0:weblogic.common.ResourceException: Could not create pool connection. The DBMS driver exception was: ORA-28001: the password has expired
  at weblogic.jdbc.common.internal.JDBCUtil.wrapAndThrowResourceException(JDBCUtil.java:250)
  at weblogic.jdbc.common.internal.RmiDataSource.getPoolConnection(RmiDataSource.java:352)
  at weblogic.jdbc.common.internal.RmiDataSource.getConnection(RmiDataSource.java:369)
  at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
  at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
  at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
  at java.lang.reflect.Method.invoke(Method.java:597)
  at intradoc.common.IdcMethodHolder.invokeMethod(IdcMethodHolder.java:86)
  at intradoc.common.ClassHelperUtils.executeIdcMethodConvertToStandardExceptions(ClassHelperUtils.java:406)
  ... 63 more

  893410 wrote:
  I'm getting a database error (see full stack below) when I try to start UCM after Weblogic. I was not having this problem before. When digging through the stack trace (below) I notice one of the error its outputting is that my password expired. However, I'm able to connect to the database using SQL Plus just fine, and even changed the system password just to be safe. Who said it was SYSTEM that was expired? What do you get from
  select username
  from dba_users
  where account_status like ('EXPIRE%);Oracle isn't smart enough to lie about that particular error message.
  Same error. I tried researching the issue even further: tried following this - http://kishantha.blogspot.com/2010/03/oracle-enterprise-manager-console.html , but when i ran the 'emctl stop dbconsole' i got a config issue, which led me to a different blog post when i tried running 'dbca' to configure and it gave me the following error - "Listener is not up or database service is not registered with it. Start the Listener and register database service and run EM Configuration Assistant again" although from what I can tell my listener is running just fine. what could possibly be going wrong here? any help would be appreciated!
  As for the listener issue, did you follow the suggestion, or just dismiss it because "from what I can tell my listener is running just fine" Did you verify that the db instance was registered to the listener? What did you see from 'lsnrctl status'?
  >
  >
  >
  <snip>
  Caused by: weblogic.jdbc.extensions.ConnectionDeadSQLException: weblogic.common.resourcepool.ResourceDeadException: 0:weblogic.common.ResourceException: Could not create pool connection. The DBMS driver exception was: ORA-28001: the password has expired
  <snip>

• Consequences of password expiration AFTER server is started

  Hi,
  What happens when the LDAP server expires the password for the account specified
  in boot.properties?
  What are all the activities for which the WebLogic Server keeps checking the validity
  of this userid/pwd? For example, Windows checks for your authorization pretty
  much for every time you access a resource like a file, etc.
  Any pointers to documentation is greatly appreciated. I am curious to know what
  exactly happens behind the scenes when the password expires AFTER the server is
  up and running.
  Thanks,
  Anant

  On 4 Feb 2004 09:49:20 -0800, Anant Kadiyala <[email protected]> wrote:
  >
  Hi,
  What happens when the LDAP server expires the password for the account
  specified
  in boot.properties?
  What are all the activities for which the WebLogic Server keeps checking
  the validity
  of this userid/pwd? For example, Windows checks for your authorization
  pretty
  much for every time you access a resource like a file, etc.
  Any pointers to documentation is greatly appreciated. I am curious to
  know what
  exactly happens behind the scenes when the password expires AFTER the
  server is
  up and running.
  Thanks,
  Anant
  My guess is that the next time an authentication is required that the
  expired password will fail. I don't know of any comprehensive list that
  details everytime an authentication is undertaken.

• How can I display the password expiration date for a user

  I have created a GUI (using PrimalForms) which runs powershel scripts to pull information like user ID, email address, last logon ec. for the helpdesk to help establish the validity of some user claims of "it worked yesterday" and the like.
  I have been asked to add the password expiration date, but I am struggling to get the code for this addition.
  Does anyone know how I can include this, and have it in a human readable format?
  The current scripts (there are 3) allow the helpdesk staff to search on user ID and display name, the third provides the last logon, it was impossible to include this in the other scripts so I added an extra search button and called it good. An example of
  these scripts is below (please note, PrimalForms needs a slightly different syntax in order to get the results displayed, but the core script is standard PS, I use Powershell 3.0)
  $results.Text=Get-ADUser -Filter "sAMAccountName -eq '$($EntryBox.text)'" -Properties DisplayName, sAMAccountName, mail, extensionattribute5, PasswordLastSet, PasswordExpired, PasswordNeverExpires, buMemberOf, telephoneNumber, msExchOmaAdminWirelessEnable, whenCreated, whenChanged, enabled, AccountExpirationDate | select givenName, surname, DisplayName, sAMAccountName, mail, extensionattribute5, PasswordLastSet, PasswordExpired, PasswordNeverExpires, buMemberOf, telephoneNumber, msExchOmaAdminWirelessEnable, whenCreated, whenChanged, enabled, AccountExpirationDate | Out-String
  $results.Focus()
  for info:
  $results.text is the window in the GUI results are displayed  in
  $entrybox.text is the text box the helpdesk staff use to input the user ID or display name of the account they are querying
  $results.focus simply tells the script to put the results in the results.text window
  The screenshot below shows the current setup, this is purely to put the above information into perspective. Obviously some of the information displayed has been removed/redacted along with our logo.

  Hi,
  Here's an example you can build from:
  $maxPasswordAge = 120
  Get-ADUser USER -Properties PasswordLastSet |
  Select SamAccountName,
  PasswordLastSet,
  @{N='PasswordLifeRemaining';E={$maxPasswordAge - ((Get-Date) - $_.PasswordLastSet).Days}},
  @{N='PasswordExpirationDate';E={(Get-Date $_.PasswordLastSet).AddDays($maxPasswordAge)}}
  Don't retire TechNet! -
  (Don't give up yet - 13,085+ strong and growing)

• Want a solution for a scenario-To Set Password expiration in OID from OIM

  Hi,
  I have one scenario. Please guide me in some details to achieve this.
  I have one password policy in OIM. When user's password expires in OIM, then his password should also expire in OID. We have OID as user's repository.
  For this I have one solution but dont know how to implement this in OIM.
  "OID has the LDAP attribute called “pwdMaxAge” map this attribute to the OIM resource object and reset this value to number of days (as per password policy) whenever you change the password in OIM. This will set the password expiration time in the OID without having the password policy in place. "
  Plesae suggest.
  Thanks in advance.

  Well here is what you can do:
  - For OIM the user's password will be governed with the Xellerate User password policy, which says that password must be changed every 28 days. So you are good in handling this in OIM.
  Now for OID side, you have two options - *1. User changes OID password directly* and *2. User changes OID password through update in OIM profile password*. Most probably tou would want the second case. If true then here is what you can do.
  - As user changes the OIM password. Create automatic trigger Change User Password which updates the password in the process form of OID.
  - This invokes the Password Updated task.
  - On SUCCESS of this task, call another task which goes to OID target and updates the attribute pwdMaxAge to Current date + 28
  Thanks
  Sunny

• Password Expire agrument while creating a new user

  When I create a user using the script:
  create user xxxx identified by yyy
  default tablespace -----
  temporary tablespace ----
  quota ---
  password expire;
  When the user logons for the first time, oracle throws a
  ORA-00988 error:
  missing or invalid password...
  My question is?
  On a UNIX system (I'm running on Window 2000 Professional)
  do you get the same error? Is this a misleading error message?
  Has anyone else seen this error message?
  Thank you in advance
  Mike Parish
  Toronto, Canada

  I found the answer:
  You must loging in sql/plus and typing alter user OWBSYS identified by password. The password depend on you, which name you will to them.
  Mehdi

• Capturing the Message on the Login Page (Invalid user/password expired etc.

  Hi, I have a requirment for capturing the error message on the Login page if the User's Account is expired or Account is Disabled or Invalid credentials, Password Lockout etc.
  I am using the attached login page. Can any one please help me out on this.
  <html><head><title>AARPLogin Page</title>
  <script type="text/javascript" language="JavaScript" xml:space="preserve">
  // This function automatically gets called for broswer detection
  var isNav4 = false;
  var isIE4 = false;
  var isNS6 = false;
  function obDetectBrowser()
  if ( navigator.appVersion.charAt( 0 ) == "4" )
  if ( navigator.appName == "Netscape" )
  isNav4 = true;
  } else {
  isIE4 = true;
  else
  if ( navigator.appVersion.charAt( 0 ) >= 5 )
  if ( navigator.appName == "Netscape" )
  isNS6 = true;
  obDetectBrowser ();
  var HOSTNAME =
  var COOKIE_OBREQUESTEDURL = "OBREQUESTEDURL";
  var COOKIE_OBFORMLOGINCOOKIE = "ObFormLoginCookie";
  var NCID_LANDING_PAGE_URL = "/landing/";
  var QS_REDIR = "ReDir";
  var keyChooser;
  function checkPasswordEnterKey( event )
  var form = document.forms[0];
  if (isNav4 || isNS6) {
  keyChooser = event.which ;
  } else if (isIE4) {
  keyChooser = window.event.keyCode;
  if (keyChooser == 13) {
  if (
  form.userid.value
  && form.userid.value != ""
  && form.password
  && form.password.value != ""
  form.submit();
  return true;
  else
  alert('Please enter a UserId and Password');
  return false;
  function showHidePanel( panelID, displayValue )
  var panelElement = document.getElementById( panelID );
  if ( displayValue == 'show' )
  panelElement.style.display = 'block';
  else
  panelElement.style.display = 'none';
  function getQueryVariable( variable )
  var query = window.location.search.substring( 1 );
  var vars = query.split( "&" );
  for ( var i=0; i < vars.length; i++)
  var pair = vars[ i ].split( "=" );
  if ( pair[ 0 ] == variable )
  return unescape( pair[ 1 ] );
  return "";
  function Get_Cookie( name )
  var nameEQ = name + "=";
  var ca = document.cookie.split( ';' );
  for( var i=0; i < ca.length; i++ )
  var c = ca[ i ];
  while ( c.charAt( 0 )==' ' )
  c = c.substring( 1, c.length );
  if ( c.indexOf( nameEQ ) == 0 )
  return c.substring( nameEQ.length, c.length );
  return null;
  function Set_Cookie( name, value, expires, path, domain, secure)
  document.cookie = name + "=" + escape( value ) +
  ( ( expires ) ? ";expires=" + expires.toGMTString() : "" ) +
  ( ( path ) ? ";path=" + path : "" ) +
  ( ( domain ) ? ";domain=" + domain : "" ) +
  ( ( secure ) ? ";secure" : "" );
  function Delete_Cookie( name, path, domain )
  if ( Get_Cookie( name ) )
  document.cookie = name + "=" +
  ( (path) ? ";path=" + path : "" ) +
  ( (domain) ? ";domain=" + domain : "" ) +
  ";expires=Thu, 01-Jan-1970 00:00:01 GMT";
  function lostPassword()
  var CurrentLogin = document.forms[0].userid.value;
  if ( CurrentLogin == "" ) {
  alert ( "Please enter your eMail Address." );
  document.forms[0].userid.focus();
  else {
  Set_Cookie( COOKIE_OBFORMLOGINCOOKIE, "done", 0, "/" );
  var LOST_PWD_PAGE = "/identity/oblix/apps/lost_pwd_mgmt/bin/lost_pwd_mgmt.cgi?program=passwordChallengeResponse&login="+CurrentLogin+"&backUrl=http://oradev2.na.aarp.int/login/login.html&target=top";
  window.location = LOST_PWD_PAGE;
  function emailPassword()
  document.passform.submit();
  function onLoad()
  if (getQueryVariable( "MSG" ) == 'LOGIN_FAILED' )
  alert ("Login Failed, Please try again");
  else if (getQueryVariable( "MSG" ) == 'PWD_EXP' )
  alert ("Your Password Is About to Expire. Please Change it at your earliest convenience.");
  var pwdExpUID = getQueryVariable( "login" );
  var hostTarget = getQueryVariable( "hostTarget" );
  var resURL = getQueryVariable( "resURL" );
  var PWD_EXP_PAGE = "/identity/oblix/apps/lost_pwd_mgmt/bin/lost_pwd_mgmt.cgi?program=redirectforchangepwd&login="+pwdExpUID+"&backURL="+hostTarget+resURL+"&target=top";
  window.location = PWD_EXP_PAGE;
  else if (getQueryVariable( "MSG" ) == 'CHGPWD' )
  alert ("You are required to change your password.");
  var chgPwdUID = getQueryVariable( "login" );
  var hostTarget = getQueryVariable( "hostTarget" );
  var resURL = getQueryVariable( "resURL" );
  var CHG_PWD_PAGE = "http://"+HOSTNAME+"/identity/oblix/apps/lost_pwd_mgmt/bin/lost_pwd_mgmt.cgi?program=redirectforchangepwd&login="+chgPwdUID+"&backURL="+hostTarget+resURL+"&target=top";
  window.location = CHG_PWD_PAGE;
  </script></head><body onload="onLoad();document.login.userid.focus();" alink="blue" bgcolor="#ffffff" link="blue" vlink="blue">
  <p align="center">
  <img alt="AARP Header Logo" src="login_files/aarpLogo.gif" border="0" height="91" width="219">
  <br>
  </p><form name="login" method="post" action="/access/oblix/apps/webgate/bin/webgate.so">
  <div class="boldText" align="center">
  <h2>Login</h2>
  <div class="boldText" align="left">
  <div id="LoginFailed" style="display: none;">
  <table align="center" bgcolor="#ff0000" border="0" cellpadding="2" cellspacing="0" width="500">
  <tbody><tr>
  <td>
  <table bgcolor="#e5e5e5" border="0" cellpadding="5" cellspacing="0" width="100%">
  <tbody><tr bgcolor="#ffffff">
  <td rowspan="3" height="40" nowrap="nowrap" valign="top">
  <img src="login_files/error.gif" name="error" height="20" width="20">
  </td>
  <td rowspan="3" align="center">
  <p>
  <font color="#ff0000" size="-1">
  <b>
  <div id="TryAgain" style="display: none;">Login Failed! Invalid UserID and/or Password, Please try again.<br></div>
  <div id="AccountLocked" style="display: none;">Your Account has been Locked!</div>
  </b>
  </font>
  </p>
  <p>
  <font color="#ff0000">
  <b>For
  assistance call E-Services Help Line at (XXX) XXX-XXXX Monday through
  Friday between the hours of 8:00 am and 5:00 pm eastern standard time.</b>
  </font>
  </p>
  </td>
  </tr>
  <tr bgcolor="#ffffff">
  </tr><tr bgcolor="#e5e5e5">
  </tr></tbody></table>
  </td>
  </tr>
  </tbody></table>
  </div>
  <br>
  </div>
  <table border="0" cellpadding="0" cellspacing="0" width="500">
  <tbody><tr>
  <td background="login_files/border_upper_left.gif" height="20" nowrap="nowrap" width="20"> </td>
  <td background="login_files/border_top.gif" height="20" nowrap="nowrap"> </td>
  <td background="login_files/border_upper_right.gif" height="20" nowrap="nowrap" width="20"> </td>
  </tr>
  <tr>
  <td background="login_files/border_left.gif" nowrap="nowrap" width="20"> </td>
  <td>
  <table bgcolor="#ebebce" border="0" cellpadding="2" cellspacing="0" height="100%" width="100%">
  <tbody><tr>
  <td colspan="3" align="center">
  <font color="darkred" face="Arial" size="3">
  <b>
  </b></font>
  <b> </b></td>
  </tr>
  <tr valign="bottom">
  <td colspan="3" width="100%">
  <table bgcolor="#ebebce" border="0" cellpadding="5" cellspacing="0" width="100%">
  <tbody><tr bgcolor="#e5e5e5">
  <td rowspan="2" bgcolor="#ebebce" height="20" nowrap="nowrap" valign="top" width="4%">
  <font color="#000000">
  <span class="text">
  <img src="login_files/arrow.gif" align="top" height="20" width="20">
  </span>
  </font>
  <font color="#000000"> </font>
  </td>
  <td rowspan="2" bgcolor="#ebebce" width="96%">
  <font color="#000000" size="-1">
  <span class="text">Please enter your Email and Password. If you are a new user to AARP, please select First Time AARP User.
  </span>
  </font>
  </td>
  </tr>
  <tr bgcolor="#e5e5e5">
  </tr></tbody></table>
  </td>
  </tr>
  <tr valign="bottom">
  <td colspan="3">
  <table align="center" border="0" width="349">
  <tbody><tr>
  <td nowrap="nowrap" width="74">
  <font color="#000000" size="-1">
  <div align="left">eMail:</div>
  </font>
  </td>
  <td width="265">
  <input name="userid" value="" size="32" maxlength="32" tabindex="2" type="text">
  </td>
  </tr>
  <tr>
  <td>
  <font color="#000000" size="-1">
  <div align="left">Password:</div>
  </font>
  </td>
  <td>
  <p>
  <font color="#000000" size="-1">
  <input name="password" size="32" maxlength="32" length="30" tabindex="3" type="password">
  </font>
  </p>
  </td>
  </tr>
  </tbody></table>
  </td>
  </tr>
  <tr>
  <td>
  <font color="#000000" size="-1">
  <p align="center"><b>Forgot Your Password?</b></p>
  </font>
  </td></tr>
  <tr>
  <td align="center"> <font color="#000000" size="-1"><!--
  Reset Password      
  -->
  Email New Password
  </font>
  </td></tr>
  <tr>
  <td colspan="4">
  <div class="boldText" align="center">
  <br>
  <input src="login_files/button_login.gif" name="Submit" value="" alt="login" type="image">
  <!--
  <b class="boldText"><img src="../images/button_login.gif" width="68" height="25" name="img_login" border="0" alt="login"/></b>
  --> <b class="boldText"><img src="login_files/button_clear.gif" name="img_clear" alt="clear" border="0" height="25" width="68"></b>
  <b class="boldText"><img src="login_files/button_help.gif" name="img_help" alt="help" border="0" height="25" width="68"></b>
  <b class="boldText"><img src="login_files/button_cancel.gif" name="img_cancel" alt="cancel" border="0" height="25" width="68"></b>
  </div>
  </td>
  </tr>
  </tbody></table>
  </td>
  <td background="login_files/border_right.gif" nowrap="nowrap" width="20"> </td>
  </tr>
  <tr>
  <td background="login_files/border_lower_left.gif" height="20" nowrap="nowrap" width="20"> </td>
  <td background="login_files/border_bottom.gif" height="20" nowrap="nowrap"> </td>
  <td background="login_files/border_lower_right.gif" height="20" nowrap="nowrap" width="20"> </td>
  </tr>
  </tbody></table>
  <p></p>
  <span class="text"><br><br><b>NOTICE:
  This system is the property of AARP and is for authorized use only.
  Unauthorized access is a violation of federal and state law. All
  software, data transactions, and electronic communications are subject
  to monitoring.</b></span>
  <div id="hr" style="position: absolute; width: 100%; height: 10px; z-index: 90; top: 657px; left: 10px;">
  <hr>
  </div>
  <div id="footer" style="position: absolute; width: 700px; height: 55px; z-index: 115; top: 678px; left: 50px;">
  <span class="subhead">
  Privacy Policy
  Disclaimer
  Contact Us
  </span>
  <span class="bodytext">
  </span></div>
  <form name="passform" action="http://oradev2.na.aarp.int/wampassword/passwordReset.html" method="post">
  <input name="login" value="" type="hidden">
  <input name="backUrl" value="http://oradev2.na.aarp.int/login/login.html" type="hidden">
  </form>
  <script type="text/javascript" language="JavaScript" xml:space="preserve">
  var undefined;
  if (
  document.login
  && document.login.password
  function clearForm()
  document.login.reset();
  function navigate( linkName )
  if ( 'login' == linkName )
  if ( document.accountLogin.userID.value != '' && document.login.password.value != '' )
  alert('Please click the Account Registration Setup link for now');
  //document.location = 'userDataPersonal.htm';
  else
  alert('Please enter a UserId and Password');
  function openHelp()
  helpDoc = window.open( "http://www.aarp.org", "", "scrollbars=yes,resizable=yes,width=500,height=300" );
  function cancel()
  // open dialog
  var initX = parseInt( window.screenX ) + parseInt( window.outerWidth ) / 2 - 100;
  var initY = parseInt( window.screenY ) + parseInt( window.outerHeight ) / 2 - 50;
  cancelDialog = window.open( "./cancelDialog.html", " cancelDialog", "resizable=yes,toolbar=no,menubar=no,width=200,height=150,screenX=" + initX +",screenY=" + initY );
  </script>
  </div></form></body>
  <script type="text/javascript">
  <!--
  function __RP_Callback_Helper(str, strCallbackEvent, splitSize, func){var event = null;if (strCallbackEvent){event = document.createEvent('Events');event.initEvent(strCallbackEvent, true, true);}if (str && str.length > 0){var splitList = str.split('|');var strCompare = str;if (splitList.length == splitSize)strCompare = splitList[splitSize-1];var pluginList = document.plugins;for (var count = 0; count < pluginList.length; count++){var sSrc = '';if (pluginList[count] && pluginList[count].src)sSrc = pluginList[count].src;if (strCompare.length >= sSrc.length){if (strCompare.indexOf(sSrc) != -1){func(str, count, pluginList, splitList);break;}}}}if (strCallbackEvent)document.body.dispatchEvent(event);}function __RP_Coord_Callback(str){var func = function(str, index, pluginList, splitList){pluginList[index].__RP_Coord_Callback = str;pluginList[index].__RP_Coord_Callback_Left = splitList[0];pluginList[index].__RP_Coord_Callback_Top = splitList[1];pluginList[index].__RP_Coord_Callback_Right = splitList[2];pluginList[index].__RP_Coord_Callback_Bottom = splitList[3];};__RP_Callback_Helper(str, 'rp-js-coord-callback', 5, func);}function __RP_Url_Callback(str){var func = function(str, index, pluginList, splitList){pluginList[index].__RP_Url_Callback = str;pluginList[index].__RP_Url_Callback_Vid = splitList[0];pluginList[index].__RP_Url_Callback_Parent = splitList[1];};__RP_Callback_Helper(str, 'rp-js-url-callback', 3, func);}function __RP_TotalBytes_Callback(str){var func = function(str, index, pluginList, splitList){pluginList[index].__RP_TotalBytes_Callback = str;pluginList[index].__RP_TotalBytes_Callback_Bytes = splitList[0];};__RP_Callback_Helper(str, null, 2, func);}function __RP_Connection_Callback(str){var func = function(str, index, pluginList, splitList){pluginList[index].__RP_Connection_Callback = str;pluginList[index].__RP_Connection_Callback_Url = splitList[0];};__RP_Callback_Helper(str, null, 2, func);}
  //--></script></html>

  Is it not possible that someone fired the password expiration cmd ?
  SQL> select limit
    2  from   dba_profiles
    3  where  profile='DEFAULT'
    4  and resource_name='PASSWORD_LIFE_TIME';
  LIMIT
  UNLIMITED
  SQL> select profile from dba_users where username='MYUSER';
  PROFILE
  DEFAULT
  SQL> conn myuser/myuser
  Connected.
  SQL> conn / as sysdba
  Connected.
  SQL> alter user myuser password expire;
  User altered.
  SQL> conn myuser/myuser
  ERROR:
  ORA-28001: the password has expired
  Changing password for myuser
  New password:
  Password unchanged
  Warning: You are no longer connected to ORACLE.
  SQL> conn / as sysdba
  Connected.
  SQL> select name, astatus, TO_CHAR(ctime,'DD-MM-YYYY HH:MI') CTIME, TO_CHAR(ptime,'DD-MM-YYYY HH:MI') PTIME, TO_CHAR(EXPTIME,'DD-MM-YYYY HH:MI') EXPIRE
    2  from sys.user$ where name ='MYUSER';
  NAME
     ASTATUS CTIME
  PTIME
  EXPIRE
  MYUSER
           1 23-11-2011 11:15
  23-11-2011 11:15
  23-11-2011 11:17
  SQL>Nicolas.

• Accounts getting disabled after enabling password expiration on BOXI R2 SP2

  Hi All,
  We have a strange issue with our production environment.After enabling password expiration on the enterprise some accounts got disabled,on further investigation I found that these users were either trying to log on to Designer or 2 tier Deski.
  I made them login through the Infoview to fix the issue.These users were Universe deginer or report writers.
  Any Suggestions

  Hi Tim,
  These accounts are Enterprise accounts,according to the users they were not given a chance and they never got any prompt for the password change it was disabled directly at the first login.
  These people were trying to logon using the Desginer or 2 Tier DESKI login and they are the members of the Administrtor Group also.
  Is it important to logon to infoview or 3 tier DESKI to change your password?
  I have no answer to give them why there accounts were disabled.
  Please suggest
  Thanks,
  Arun

• Password expire date back to 2011 from 2012  after assigned  a user profile

  Friends,
  I created a profile test as
  COMPOSITE_LIMIT UNLIMITED
  SESSIONS_PER_USER UNLIMITED
  CPU_PER_SESSION UNLIMITED
  CPU_PER_CALL UNLIMITED
  LOGICAL_READS_PER_SESSION UNLIMITED
  LOGICAL_READS_PER_CALL UNLIMITED
  IDLE_TIME 60
  CONNECT_TIME UNLIMITED
  PRIVATE_SGA UNLIMITED
  FAILED_LOGIN_ATTEMPTS 5
  PASSWORD_LIFE_TIME 120
  PASSWORD_REUSE_TIME           60
  PASSWORD_REUSE_MAX           30
  PASSWORD_VERIFY_FUNCTION NULL
  PASSWORD_LOCK_TIME 1
  PASSWORD_GRACE_TIME 7;
  the user default profile default PASSWORD_LIFE_TIME is 180 and password expired date is 1/7/2012. the test account was created in 7/11/2011.
  Now I assign test user to test profile successfully.
  However. expire date becomes 11/8/2011 1 from 1/7/2012 by select dba_users
  which wrong is in my profile or somewhere?
  As I think, the account password expired should be start after assigned new profile with PASSWORD_LIFE_TIME. but is seems expire date is start from original account created date.
  Thanks
  newdba
  Edited by: Oradb on May 24, 2012 1:56 PM

  I would think the expire time would be based on the last password change time which Oracle stores in the rdbms base table for user information (user$). Find a second user, alter the password, check the expire date, then assign the user to the new profile, re-check the expiration date. Post back. Behavior may vary between releases so include full Oracle version of test.
  HTH -- Mark D Powell --

• Initial password expires:Communication Users

  Hi All,
  I have created one user for early watch alert generation purpose user password expires every 15 days :
  Defined profile parameter is:login/password_max_idle_initial:14
  As per my understanding communication user password never expires.
  Kindly please suggest me
  Thanks in Advance
  Regards
  Nekkalapu

  Hi Siva,
  Thanks for you response.
  But it will effect to all the users right,sap also is not recomending to put 0 value this parameter.
  Is their any other way to resolev this issue.
  I am using communication users for generating earlywatch laerts.
  Advance thanks
  Regards
  Nekkalapu

• Remove password expiration time limit for ocs users

  Hello,
  I want to know how to remove password expiration time limit for ocs (11gR2) users? In our system all user accounts are getting expired in 1 week. I have to remove expdate. (profile was changed)
  Thx

  SQL> select * from dba_profiles where RESOURCE_NAME LIKE 'PASSWORD_LIFE_TIME';
  PROFILE RESOURCE_NAME RESOURCE     LIMIT
  DEFAULT PASSWORD_LIFE_TIME PASSWORD     180
  MONITORING_PROFILE PASSWORD_LIFE_TIME PASSWORD     DEFAULT
  SQL> ALTER PROFILE DEFAULT LIMIT PASSWORD_LIFE_TIME UNLIMITED;
  Profile altered.
  SQL> select * from dba_profiles where RESOURCE_NAME LIKE 'PASSWORD_LIFE_TIME';
  PROFILE RESOURCE_NAME RESOURCE     LIMIT
  DEFAULT PASSWORD_LIFE_TIME PASSWORD     UNLIMITED
  MONITORING_PROFILE PASSWORD_LIFE_TIME PASSWORD
  To change the password for a user:
  alter user username identified by new_password;
  Edited by: hitgon on Apr 30, 2012 7:33 PM

• Remove Password Expiration Time setup

  Hello,
  I want to know how to remove password expiration time limit for ocs users? In our system all user accounts are getting expired after 3 to 4 weeks. I have to remove this restriction and make password never expires

  You have to do this directly in OID using oidadmin (Oracle Directory Administrator)
  Instructions are in the admin guide at this URL
  http://download-west.oracle.com/docs/cd/B25553_01/collab.1012/b25490/ch_users_groups.htm#OCSAG373

• My iTunes password will update some of my Apps on iPad but not all of them.  When I try to update the remaining ones, my password expires.  I've just created 5th PW.  Does anyone else experience this?

  My iTunes password will update some of my Apps but not all of them.  When I try to update the remaining ones, my password expires.  I've just created 5th PW.  Does anyone else experience this?

  - Try going to Setings>Store and sign out of the account and then sign back in.
  - Reset the iPod. Nothing will be lost
  Reset iPod touch:  Hold down the On/Off button and the Home button at the same time for at
  least ten seconds, until the Apple logo appears

• Diferent password expiration days for different users in the same system.

  Hi sdn gurus,
  We need to configure different password expiration days for different groups of users in the same system.
  We know how to configure the system to define a password expiration time for the complete system (parameter login/password_expiration_time), but we must configure some expiration time to a group of users and another expiration time to another one in the SAME system.
  Somebody know a way to do this?
  Thanks in advance for your help!!!

  Hi Sunny,
  Thanks for your reply!!!
  We know the parameter is for the complete system ... but we are trying to find out if exist another way to define diferent passwrod expiration days, to diferent group of users (may be with an additional system parameters or UME configuration).
  Thanks to all for your help.