This is a continuation of 32251873.

Spectrum OneClick user has the "Allow user to log in with Spectrum password, If local authentication fails then go for LDAP authentication" parameter for the user model set to "No" but the user is still able to log into OneClick when they should not be able to.

Release : Spectrum 10.4.2

Component : Spectrum OneClick

This is a know issue with Spectrum 10.4.2. 

This issue has been addressed in Spectrum 10.4.2.1 and above.

Please reference the following from the "Resolved Issues in 10.4.2.1" section of the documentation.

Symptom: With Save LDAP Passwords to Spectrum DB option set to YES (on LDAP Configuration webpage) and Allow user to log in with spectrum password, if local Authentication fails then go for LDAP Authentication set to NO for the NON-LDAP user, this NON-LDAP user was still able to log in with a local password.

Resolution: With Save LDAP Passwords to Spectrum DB option set to YES(on LDAP Configuration webpage) and Allow user to log in with spectrum password, if local Authentication fails then go for LDAP Authentication set to NO for the NON-LDAP user, this NON-LDAP user should never be allowed to log in with local password because his account does not exist in LDAP server. (DE458903,31883885 , 10.4.2.1)