In another post I was configuring Mobile and Social login for OAM, using OUD as my Identity Store, and OAM was throwing this error during user registration:

LDAP: error code 123 – You do not have sufficient privileges to use the proxied authorization control

If you see this error, the fix is pretty easy:

  • Select Mobile Services from OAM Admin console’s Launch Pad
  • In the Service Providers section, edit the User Profile that is using OUD as the Identity Directory Service. In my case, I am using the default User Profile
  • In the Service Provider Configuration page, add an Attribute in the Attributes section called “proxyAuth” and set it to “false”
  • Save your changes and try again.
Oracle documentation on this attribute can be found here: http://docs.oracle.com/cd/E27559_01/admin.1112/e27239/oicconfiguringmobilesrvcs.htm#BEIDBEFB