Hi

In our ISVA v10.0.8 we have an account which sometimes gets disabled (not valid). We've not been able to figure out why. I've tried applying audit logging , if it could shine a light on this and made some tests in our ISVA test environment. But I have not been able to provoke an event that invalidates an account nor found any interresting entries in the audit.log. I've tried logging in with a wrong password too many times; it results in a temporary lock of the account, but no logging. I've enabled the User authentication and Account locked components in Audit configuration. What audit logging configuration do I need and how can I provoke an account getting disabled?

BR Carsten

It sounds like the problem is on the ldap level - so I would recommend looking in the ldap audit logs for binds with an outdated password.

HTH

Hi

In our ISVA v10.0.8 we have an account which sometimes gets disabled (not valid). We've not been able to figure out why. I've tried applying audit logging , if it could shine a light on this and made some tests in our ISVA test environment. But I have not been able to provoke an event that invalidates an account nor found any interresting entries in the audit.log. I've tried logging in with a wrong password too many times; it results in a temporary lock of the account, but no logging. I've enabled the User authentication and Account locked components in Audit configuration. What audit logging configuration do I need and how can I provoke an account getting disabled?

BR Carsten