E-SEC: FAILEDLOGINS And ACCTLOCK Not Generating USER_PROFILE Messages
(Doc ID 2439378.1)
Last updated on JULY 21, 2020
Applies to:PeopleSoft Enterprise PT PeopleTools - Version 8.55 and later
Information in this document applies to any platform.
Affecting PeopleTools 8.55 (Not tested in 8.54 and 8.56)
When USER_PROFILE message is set up between two environments, when an ACCTLOCK is triggered by password controls, this message does not sync between environments. This allows a user to try passwords until lockout on multiple environments instead of being locked out of all environments after failing in one.
ACCTLOCK will sync between environments if accounts are manually locked but not when the lockout is caused by the Failed Attempts limit to be reached in password controls.
In Tools 8.55, set up two way USER_PROFILE messaging between two environments.
Confirm it is working by locking a user profile on one and seeing it lock on the other. Then unlock it and see it sync across both environments.
- Turn on Password controls and set limit for unsuccessful logins.
- log out and mistype password for a user until it locks the account.
- log in the other environment using the correct password
Once an account is locked in one environment it should lock in another if user profile messaging is turned on.
To view full details, sign in with your My Oracle Support account.
Don't have a My Oracle Support account? Click to get started!
In this Document