Number Of Invalid Logins Does Not Work As Expected
(Doc ID 3067763.1)
Last updated on JANUARY 21, 2025
Applies to:
Oracle Financial Services Analytical Applications Infrastructure - Version 8.1.2.1 and laterInformation in this document applies to any platform.
Symptoms
On 8.1.2.1, Invalid login attempt feature is not working as expected i.e User account does not get locked even after exceeding Number of invalid login attempts specified in Configuration screen.
For ex:
Number of invalid logins is specified as 4 and if we user tried a invalid attempt for 5 or more times and on the next attempt if right password is entered then application allows to login.
Steps to Reproduce Problem
-----------------------------
Configure invalid login attempts say as x
try to login with invalid password for x+1 time and then in the immediate attempt provide the right password. Application allows the user to login successfully.
Ideally user account should be in locked state and sysadmn has to unlock it.
Expected Behaviour
-----------------------
Application should not allow the user to login once the count of invalid login attempts is reached/Exceeded.
BUSINESS IMPACT
-----------------------
User are able to login even after exceeding the invalid login attempt value.
Changes
Upgraded to platform 8121 ML
Cause
To view full details, sign in with your My Oracle Support account. |
|
Don't have a My Oracle Support account? Click to get started! |
In this Document
| Symptoms |
| Changes |
| Cause |
| Solution |
| References |