On VIP Authentication Hub (AuthHub) 2.2.6, we found that AuthHub changed employeeType attribute (which is mapped to Status attribute) value to 2 in LDAP user store when a user reached 3 attempts of login failure.
Is this a correct AuthHub behavior? Do we have a parameter that defines this behavior?
VIP Authentication Hub 2.2.6, 3.x or later
When we set isAuthoritativeForIDLCM to 'true' in the LDAP configuration, then AuthHub will change Status (mapped to employeeType) attribute value to 2 (disabled, with Status Encoding is set to SiteMinder ) in the LDAP user store when the user is locked due to login failure more than userMaxStrikeCount value.
In the Admin Console the LDAP configuration's isAuthoritativeForIDLCM attribute is labeled as "User lock status is synced to the identity store".
For more details information please review the description of isAuthoritativeForIDLCM attribute in below documentation
LDAP Configuration API