I can think of several stumbling points on this but don't think I'm seeing them all, plus it's possible that there's work arounds for all the issues.
Here's the environment in broad strokes:
Mixed Windows (Server 2008 and 2012) and Linux (RHEL6 -ish) environment. We have integrated Active Directory into our linux servers so that authorized users can access the servers OS and use their normal windows authentication methods to get to the server. We're running Oracle 11 (204) but going to 12 ASAP.
The Powers That Be here have also mandated that we will change all service account passwords at least every 60 days.
I can setup a local account that mimic's the service account in Active Directory and when the active directory client is working the official password will give you access to the server as the service account. The problem is that the local account password is masked by the active directory interaction. (Not an issue for this forum, I have a solution for that), but it would be nice if there was no local account, and we just had to worry about the Active Directory account and password.
I'm prepared to say this can't be done, but figured I've toss it to the crowd and see if anyone else is trying to do this.
If it's completely bizarre to everyone, I'll open an SR on it for official word.
Thanks!
Tom