Tuesday, July 10, 2012

How to Unlock a User Account in WebLogic Server

If a user unsuccessfully attempts to log into a WebLogic Server instance more than the configured number of retry attempts, they are locked out of further access.

This article shows you how to unlock a locked user so that they can log in again.

The Symptom

When a user was locked out, you can find an entry in the application server's log:

  <Jul 10, 2012 3:51:38 PM PDT> <Notice> <Security> <BEA-090078> 
  <User psr1 in security realm myrealm has had 5 invalid login 
    attempts, locking account for 30 minutes.>


The Solution

To unlock a user account: 
  1. If you have not already done so, in the Change Center of the Administration Console, click Lock & Edit.
  2. In the left pane click the name of the domain. 
  3. Select Security > Unlock User
  4. Enter the user name of the user whose account you want to unlock. 
  5. Click Save



User Lockout Management Statistics

After you have unlocked a user account, you can monitor user lockout management statistics for your server by selecting:

  • Servers > CRMDemo_server1 > Monitoring > Security
In our case, there were 6 locked users.  After unlocking all of them, the page became:



References

  1. How to reset a user who has been locked out of WebLogic due to too many invalid login attempts

No comments: