We  have a couple of users who are not LDAP users and they are unable to login locally even when the user is a super user and the Allow Login
locally setting is set to yes.

The following output can be seen in the catalina.out file with SSORB Security SP debug enabled:

Dec 06, 2022 18:03:46.046 (https-jsse-nio-443-exec-9) (SecuritySP) - -------- testing --------
Dec 06, 2022 18:03:46.046 (https-jsse-nio-443-exec-9) (SecuritySP) - IN getUserRoles for testing
Dec 06, 2022 18:03:46.046 (https-jsse-nio-443-exec-9) (SecuritySP) - Getting user model for testing
Dec 06, 2022 18:03:46.046 (https-jsse-nio-443-exec-9) (SecuritySP) - Getting user model by filter from admin domain null
Dec 06, 2022 18:03:46.046 (https-jsse-nio-443-exec-9) (SecuritySP) - Getting user model by filter from admin domain XXXXXXX
Dec 06, 2022 18:03:46.046 (https-jsse-nio-443-exec-9) (SecuritySP) - Got user model: 0xXXXXXXX
Dec 06, 2022 18:03:46.046 (https-jsse-nio-443-exec-9) (SecuritySP) - superUser: union com.aprisma.spectrum.core.idl.CsCAttribute.CsCValue {
boolean boolValue=true
}, allowNoUser: union com.aprisma.spectrum.core.idl.CsCAttribute.CsCValue {
boolean boolValue=true
}
Dec 06, 2022 18:03:46.046 (https-jsse-nio-443-exec-9) (SecuritySP) - Getting user model by filter from admin domain null
Dec 06, 2022 18:03:46.046 (https-jsse-nio-443-exec-9) (SecuritySP) - Authenticating user with external directory server: testing
Dec 06, 2022 18:03:46.061 (https-jsse-nio-443-exec-9) (SecuritySP) -   Getting user by search: CN=testing
Dec 06, 2022 18:03:46.155 (https-jsse-nio-443-exec-9) (SecuritySP) -   search returned no results, no user found

Release : 10.4.2.

This appears to be caused by the null domain in the above SSORB Security SP output:

Getting user model by filter from admin domain null

This issue has been resolved in 10.4.3.1 with DE493405. Local Users are able to login when the user is a super user and the Allow Login
locally setting is set to yes.