000023333 - Want to use the built-in account unlock mechanism that is configured with the password lockout policy in the admingui

Document created by RSA Customer Support Employee on Jun 14, 2016Last modified by RSA Customer Support Employee on Apr 22, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000023333
Applies To5.5.3 Administrative API
ClearTrust Authorization Server 5.5.3
IssueWant to use the built-in account unlock mechanism that is configured with the password lockout policy in the admingui
Developer wants to gain the automatic, timed unlock functionality available in ClearTrust for a custom application.
CauseThe time of lockout for a user account is not exposed in the Administrative API, making it difficult to create a custom automatic unlock feature using strictly the Admin API.
ResolutionBy calling the method incrementFailedCount in the iUser object with an increment matching the configured max failure count in the admingui, the user will be placed in a locked out state that will abide by the automatic, timed unlock setting.  e.g., if a user is put into this lockout state and the unlock time period is set to 3 days, after 3 days the user's account will be unlocked automatically.
Legacy Article IDa33378

Attachments

    Outcomes