The Show Lockout Failures setting in Okta Identity Engine (OIE) fails to trigger the self-service unlock flow when the User enumeration prevention feature is enabled. Disabling this feature resolves the issue and allows the unlock flow to proceed. When this issue occurs, the user receives the following error message:

Unable to sign in

• Okta Identity Engine (OIE)
• Password Policy
• Self-Service Unlock

The Show Lockout Failures setting has limited relevance because OIE flows automatically initiate the self-service unlock flow when appropriate. However, the User Enumeration Prevention feature blocks the self-service unlock flow from initiating. The system displays the error message instead of initiating the self-service unlock flow.

How does an administrator resolve the self-service unlock issue?

To resolve this issue and allow the self-service unlock flow to initiate, disable the User enumeration prevention feature. Perform the following steps to modify the setting:

1. Choose Security > General.
2. Clear the User enumeration prevention setting.
3. Save the changes.