This content has been marked as final. Show 4 replies
Right now I am using the attributue "orclpwdaccountunlock" and setting it to 1 as below:
Attribute mod0 = new BasicAttribute("orclpwdaccountunlock","1");
mods = new ModificationItem(DirContext.ADD_ATTRIBUTE, mod0);
My user is getting unlocked also. What is the difference between the attribute that I am using and that you have specified?
Generally, when OAM handles the user lockout through password policies, the 3 mentioned attributes 'oblockouttime', 'oblogintrycount', 'oblastloginattemptdate' get updated, and these are oblix/OAM attributes.
The attribute 'orclpwdaccountunlock' is specific to OID.
Check if the OID password policies is enabled. Its a good practice to handle password policies from OAM/OIM.
-- Pramod Aravind