Policy Server: Version 12.52.01.00 (12.52 SP1 Base)
OS: RedHat Linux 5
Oracle database: 22.214.171.124.0
Datadirect oracle driver version: 7.10
NOTE: We used the following to confirm the full version of the Datadirect driver version.
From: CA/siteminder/odbc/lib, run ..
$strings NSora28.so|grep "7\."
While the version of the "DataDirect Wire protocol" may support Oracle Advanced Security, there was a related defect in an early release of the 7.1 driver. Fixed in hot fix 7.12.0085
Prior to the fix. ORA-01017 error is received if the Encryption Level = 2 (Requested) or Encryption Level = 3 (Required)
However, The problem does not occur when the driver has Encryption Level set to 0 or 1.
Option 1: Use EncryptionLevel=1" vs "EncryptionLevel=3" in the ODBC.ini.
Option 2: Upgrade to 12.52 Sp1 CR2 or later.
DATADIRECT KB ARTICLES
CANNOT CONNECT TO ORACLE WHEN ORACLE ADVANCED SECURITY IS ENABLED
ERROR MESSAGE: ORA-01017: Invalid username/password; login denied
RESOLUTION: Fixed in hot fix 7.12.0085
Refer to "Connect and Connect64 for ODBC hot fix download and install instructions" for instructions on how to download and install the hot fix.
DOES THE CONNECT/CONNECT64 FOR ODBC ORACLE WIRE PROTOCOL SUPPORT ORACLE ADVANCED SECURITY
RESOLUTION: Enhancement request PSC00039104 has been implemented. Upgrade to Data Direct Connect for ODBC 7.1 GA or later.