Spectrum 21.2.1 Account Lockout Feature

book

Article ID: 221660

calendar_today

Updated On:

Products

CA Spectrum

Issue/Introduction

For Spectrum 21.2.1. there is a new account lock that will lock the account after 5 failed attempts.

Is this also active if LDAP Authentication is used?

Can it be disabled?

Environment

Release : 21.2

Component : Spectrum OneClick

Resolution

The setting does effect LDAP and is highly recommended due to enhanced security not to disable this.  This can be disabled by entering a "0" in the lockouttime in the config.xml file-

 

$SPECROOT/tomcat/webapps/spectrum/META-INF/context.xml file.

failureCount
Specifies the number of continuous failed login attempts before locking out the user.
Default: 5
lockOutTime
Specifies the lockout duration in seconds. Set value to zero to disable the lockout option.
Default: 600

However this is not recommended by Engineering and the would suggest to modify the Lockout time or retry count instead.

Additional Information

More information regarding the new Account lock feature can be found here:

Account lock feature