<iframe src="https://www.googletagmanager.com/ns.html?id=GTM-M74D8PB" height="0" width="0" style="display:none;visibility:hidden">
Loading
Skip to NavigationSkip to Main Content
System Status
Announcements
Announcements
Search
Search
Select Language
Knowledge Base
Knowledge Articles
Support Videos ↗
Documentation
Product Documentation ↗
Developer Documentation ↗
Product Release Notes ↗
Community
Events & Webinars
Okta Ideas ↗
Resources
Product Hub
Customer Success Hub
Product Release Update
Learning
Okta Learning ↗
Get Support
Open a Case
HomeCommunityForum
0D50Z00008G7V0iSAFOkta Classic EngineAdministrationAnswered2018-09-05T01:29:48.000Z2017-12-15T01:22:59.000Z2017-12-15T01:22:59.000Z

Rocky (Customer) asked a question.

Edited by varun.kavoori1.5210444522562532E12 September 5, 2018 at 1:19 AM
The user reached the maximum login attempts and got locked out. But there is no policy in place!
Hello Okta experts,

 

I have a user that has been locked out of Okta twice. Each time I received an email that reads:

 

"The user reached the maximum login attempts. Please reset the user's password to re-enable login."

 

BUT, I don't have "Lockout after x unsuccessful attempts" box checked in any of my password policies.

 

Is there a default number of unsuccessful attempts that is put in place if not specified?

 

Thanks in advance,
  • 1 answer
  • 5.88K views

  • bogdan.musat1.4721640984610786E12 (Okta, Inc.)

    This is Bogdan from Okta support.

     

    If the user is AD mastered user and you have AD password policy in place please check whether you have selected the option to sync the AD password in Okta on the following setting-

     

    1. Okta-->Directory--> Directory Integration--> Active Directory-->Settings--> Sync Password

     

    "Password sync ensures a user's Active Directory password is always the same as their Okta password. This can only be enabled when Delegated Authentication is disabled for AD."

     

    OR

     

    2. Okta -->Security-->Delegated Authentication

     

    Enable delegated authentication to Active Directory.

     

    If this issue re-occurres I would recommend opening a ticket with Okta support to investigate further.

     

    Thank you.
    Expand Post
This question is closed.
Loading
The user reached the maximum login attempts and got locked out. But there is no policy in place!