Hi Menaka Reason is here in two methods its handled by two different handlers. What we can do is to improve logging in governance handler. You may create a jira for that as an improvement.
Thanks & Regards Danushka Fernando Associate Tech Lead WSO2 inc. http://wso2.com/ Mobile : +94716332729 On Thu, Jul 6, 2017 at 11:44 AM, Menaka Jayawardena <men...@wso2.com> wrote: > Hi, > > In IS 5.3.0, we can enable account lock in two methods. > 1. The file based method, which applies the configuration globally for all > the tenants. > 2. Enable through the management console. > > But, the logs in those two cases are looks different. > > When IS is configured using the method 1, the logs are as follows. > [2017-07-06 11:31:23,634] WARN > {org.wso2.carbon.core.services.util.CarbonAuthenticationUtil} > - Failed Administrator login attempt 'menaka[-1234]' at [2017-07-06 > 11:31:23,634+0530] > [2017-07-06 11:31:30,817] INFO > {org.wso2.carbon.identity.mgt.IdentityMgtEventListener} > - User, menaka has exceed the max failed login attempts. User account > would be locked > [2017-07-06 11:31:30,839] WARN > {org.wso2.carbon.core.services.util.CarbonAuthenticationUtil} > - Failed Administrator login attempt 'menaka[-1234]' at [2017-07-06 > 11:31:30,839+0530] > [2017-07-06 11:31:36,746] WARN > {org.wso2.carbon.identity.mgt.IdentityMgtEventListener} > - User account is locked for user : menaka. cannot login until the account > is unlocked > [2017-07-06 11:31:36,747] ERROR {org.wso2.carbon.core. > services.authentication.AuthenticationAdmin} - System error while > Authenticating/Authorizing User : 17003 User account is locked for user : > menaka. cannot login until the account is unlocked > [2017-07-06 11:31:56,780] WARN > {org.wso2.carbon.identity.mgt.IdentityMgtEventListener} > - User account is locked for user : menaka. cannot login until the account > is unlocked > [2017-07-06 11:31:56,785] ERROR {org.wso2.carbon.core. > services.authentication.AuthenticationAdmin} - System error while > Authenticating/Authorizing User : 17003 User account is locked for user : > menaka. cannot login until the account is unlocked > > This clearly says that the number of login attempts has exceeded and the > account is locked. > > But, when configured from the Management Console, the logs do not say > anything about locked account. > > [2017-07-06 11:25:23,395] WARN > {org.wso2.carbon.core.services.util.CarbonAuthenticationUtil} > - Failed Administrator login attempt 'menaka[-1234]' at [2017-07-06 > 11:25:23,395+0530] > [2017-07-06 11:25:34,532] WARN > {org.wso2.carbon.core.services.util.CarbonAuthenticationUtil} > - Failed Administrator login attempt 'menaka[-1234]' at [2017-07-06 > 11:25:34,532+0530] > [2017-07-06 11:25:45,019] WARN {org.wso2.carbon.identity. > handler.event.account.lock.AccountLockHandler} - Error occurred while > calling triggerNotification, detail : Email notification sending failed. > Sending email address is not configured for the user. > [2017-07-06 11:25:45,021] WARN > {org.wso2.carbon.core.services.util.CarbonAuthenticationUtil} > - Failed Administrator login attempt 'menaka[-1234]' at [2017-07-06 > 11:25:45,021+0530] > [2017-07-06 11:26:08,792] ERROR {org.wso2.carbon.core. > services.authentication.AuthenticationAdmin} - System error while > Authenticating/Authorizing User : Error when handling event : > PRE_AUTHENTICATION > > Can we use the same log for both the scenarios or more specific logs for > the second one? > > Thanks and Regards, > Menaka > > -- > *Menaka Jayawardena* > *Software Engineer - WSO2 Inc* > *Tel : 071 350 5470* > *LinkedIn: https://lk.linkedin.com/in/menakajayawardena > <https://lk.linkedin.com/in/menakajayawardena>* > *Blog: https://menakamadushanka.wordpress.com/ > <https://menakamadushanka.wordpress.com/>* > > > _______________________________________________ > Dev mailing list > Dev@wso2.org > http://wso2.org/cgi-bin/mailman/listinfo/dev > >
_______________________________________________ Dev mailing list Dev@wso2.org http://wso2.org/cgi-bin/mailman/listinfo/dev
