The UME of the Java server is set to LDAP. There is a requirement to lock users after a specified number of failed password attempts in LDAP but conversely a requirement to never lock the users in the UME. To facilitate this parameter ume.logon.security_policy.lock_after_invalid_attempts is set to 0 in the Configtool. Now when users get locked LDAP side after a number of failed password logons, there is no warning in the browser any longer which says Password locked:
SAP NetWeaver Release Independent
KBA , BC-JAS-SEC-LGN , Logon, SSO , BC-JAS-SEC-UME , User Management Engine , Problem
About this pageThis is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP ONE Support launchpad (Login required).
Search for additional results
Visit SAP Support Portal's SAP Notes and KBA Search.