Is there a way to automatically clear "incorrect passcodes". For example, we can set the accounts to unlock automatically after preset time. But even after account gets unlocked, incorrect passcode attempts will not be cleared. Is there a way to automatically clear incorrect passcode attempts?
There is no 'automatic' way, except: the next successful authentication with any token will reset the counter to zero.
NOTE: There a difference between successful login with tokens vs a fixed passcode.
there are two counters inside the database.
fail_password_count for fixed passcodes,
and
bad_token_code_count is for tokens
If you fail an authentication all counters will increment by 1 unless you only have a fixed passcode, or just tokens, in which case it increments the appropriate counter. The one counter you see in the Security Console is the high number of any of these counters.
If you use a successful fixed passcode login, it will only reset the failed password counter for the fixed passcode, but will keep the failed passcode counter at whatever value for the tokens. Only a successful token logon clears all counters both tokens and fixed passcodes.
Clearing in the Security Console clears them all.