Hi,
In IS 5.3.0, we can enable account lock in two methods.
1. The file based method, which applies the configuration globally for all
the tenants.
2. Enable through the management console.
But, the logs in those two cases are looks different.
When IS is configured using the method 1, the logs are as follows.
[2017-07-06 11:31:23,634] WARN
{org.wso2.carbon.core.services.util.CarbonAuthenticationUtil} - Failed
Administrator login attempt 'menaka[-1234]' at [2017-07-06
11:31:23,634+0530]
[2017-07-06 11:31:30,817] INFO
{org.wso2.carbon.identity.mgt.IdentityMgtEventListener} - User, menaka has
exceed the max failed login attempts. User account would be locked
[2017-07-06 11:31:30,839] WARN
{org.wso2.carbon.core.services.util.CarbonAuthenticationUtil} - Failed
Administrator login attempt 'menaka[-1234]' at [2017-07-06
11:31:30,839+0530]
[2017-07-06 11:31:36,746] WARN
{org.wso2.carbon.identity.mgt.IdentityMgtEventListener} - User account is
locked for user : menaka. cannot login until the account is unlocked
[2017-07-06 11:31:36,747] ERROR
{org.wso2.carbon.core.services.authentication.AuthenticationAdmin} -
System error while Authenticating/Authorizing User : 17003 User account is
locked for user : menaka. cannot login until the account is unlocked
[2017-07-06 11:31:56,780] WARN
{org.wso2.carbon.identity.mgt.IdentityMgtEventListener} - User account is
locked for user : menaka. cannot login until the account is unlocked
[2017-07-06 11:31:56,785] ERROR
{org.wso2.carbon.core.services.authentication.AuthenticationAdmin} -
System error while Authenticating/Authorizing User : 17003 User account is
locked for user : menaka. cannot login until the account is unlocked
This clearly says that the number of login attempts has exceeded and the
account is locked.
But, when configured from the Management Console, the logs do not say
anything about locked account.
[2017-07-06 11:25:23,395] WARN
{org.wso2.carbon.core.services.util.CarbonAuthenticationUtil} - Failed
Administrator login attempt 'menaka[-1234]' at [2017-07-06
11:25:23,395+0530]
[2017-07-06 11:25:34,532] WARN
{org.wso2.carbon.core.services.util.CarbonAuthenticationUtil} - Failed
Administrator login attempt 'menaka[-1234]' at [2017-07-06
11:25:34,532+0530]
[2017-07-06 11:25:45,019] WARN
{org.wso2.carbon.identity.handler.event.account.lock.AccountLockHandler} -
Error occurred while calling triggerNotification, detail : Email
notification sending failed. Sending email address is not configured for
the user.
[2017-07-06 11:25:45,021] WARN
{org.wso2.carbon.core.services.util.CarbonAuthenticationUtil} - Failed
Administrator login attempt 'menaka[-1234]' at [2017-07-06
11:25:45,021+0530]
[2017-07-06 11:26:08,792] ERROR
{org.wso2.carbon.core.services.authentication.AuthenticationAdmin} -
System error while Authenticating/Authorizing User : Error when handling
event : PRE_AUTHENTICATION
Can we use the same log for both the scenarios or more specific logs for
the second one?
Thanks and Regards,
Menaka
--
*Menaka Jayawardena*
*Software Engineer - WSO2 Inc*
*Tel : 071 350 5470*
*LinkedIn: https://lk.linkedin.com/in/menakajayawardena
<https://lk.linkedin.com/in/menakajayawardena>*
*Blog: https://menakamadushanka.wordpress.com/
<https://menakamadushanka.wordpress.com/>*
_______________________________________________
Dev mailing list
[email protected]
http://wso2.org/cgi-bin/mailman/listinfo/dev
