The user reached the maximum login attempts and got locked out. But there is no policy in place! Skip to main content
https://support.okta.com/help/answers?id=9062a000000quhyqac&refurl=http%3a%2f%2fsupport.okta.com%2fhelp%2fanswers
How satisfied are you with the Okta Help Center?
Thank you for your feedback!
How satisfied are you with the Okta Help Center?
1
2
3
4
5
Very Dissatisfied
Very satisfied
Enter content less than 200 characters.
Ask Search:
Rocky ReyesRocky Reyes 

The user reached the maximum login attempts and got locked out. But there is no policy in place!

Hello Okta experts,

I have a user that has been locked out of Okta twice. Each time I received an email that reads:

"The user reached the maximum login attempts. Please reset the user's password to re-enable login."

BUT, I don't have "Lockout after x unsuccessful attempts" box checked in any of my password policies.

Is there a default number of unsuccessful attempts that is put in place if not specified?

Thanks in advance,
Bogdan MusatBogdan Musat (Okta, Inc.)
This is Bogdan from Okta support.

If the user is AD mastered user and you have AD password policy in place please check whether you have selected the option to sync the AD password in Okta on the following setting-

1. Okta-->Directory--> Directory Integration--> Active Directory-->Settings--> Sync Password

"Password sync ensures a user's Active Directory password is always the same as their Okta password. This can only be enabled when Delegated Authentication is disabled for AD."

OR

2. Okta -->Security-->Delegated Authentication

Enable delegated authentication to Active Directory.

If this issue re-occurres I would recommend opening a ticket with Okta support to investigate further.

Thank you.