Data Loss Prevention

Are there character limits on what can be included in a password for signing into Enforce?  I'm using Active Directory for Authentication and generated a strong password.  My current password has a ) as the starting character and while I'm able to authenticate to AD with that password I'm unable to authenticate against Enforce.

So the question is are there a list of characters that I can't use?  I know there is a list in the Oracle guide on characters that shouldn't be passwords.

Thanks

Jonathan

I think there are some limitations but not sure if they are published anywhere (except Oracle guide for local accounts perhaps),   I have had users that needed to "simplify" their AD password in order to be able to sign into Enforce console.   I didn't troubleshoot this much as to what the limit is, or what characters may have been causing trouble however.  It would be nice to see a published list of password criteria when using Active Directory auth because it seems there are differences between what AD allows vs. what the Enforce console passes through to AD for authentication.

Jesse,

I have not seen an issue with AD authentication and special characters.

I assume you are doing this with a personal account and NOT the Administrator account.

Are you able to login with a different account? You may have an AD authentication connection issue..

Check the logs..

You may need to configure the AD authentication using some encryption.. Also make sure to use ALL caps in the krb5.ini file.

You mayneed to confgure the krb5.ini file as the following:

[libdefaults]
           default_realm = DDPV.COM
           default_tkt_enctypes = RC4-HMAC, DES-CBC-CRC, DES3-CBC-SHA1,DES-CBC-MD5
           default_tgs_enctypes = RC4-HMAC, DES-CBC-CRC, DES3-CBC-SHA1, DES-CBC-MD5
           
[realms]
       DDPV.COM = {
                    kdc = DC01.DOMAIN.COM
                           kdc = DC02.DOMAIN.COM
                    }

Good Luck

Ronak

IF THIS SOLVES YOUR QUESTION PLEASE MARKED AS SOLVED