Layer 7 Access Management

Expand all | Collapse all

custom error page when user locked account due to invalid password

Jump to Best Answer
  • 1.  custom error page when user locked account due to invalid password

    Posted 01-04-2016 06:36 PM

    Hello there,

     

    We have a requirement that application would like to redirect to a custom page when user account is locked after 3 bad login attempt based on the pwd policy. How do we do it? the reason i ask is, we have lot of applications that use the same pwd policy and common redirect same page when the user account is locked... however we just need to display custom error page only for one application when the users account locked.

     

    Thanks.



  • 2.  Re: custom error page when user locked account due to invalid password
    Best Answer

    Posted 01-04-2016 10:44 PM

    Hello,

     

    You should be able to achieve this by modifying the default password service page (smpwservices.fcc) something like below:

     

    Change :

    //Auth Reason 7 - Account disabled

        else if ($$smauthreason$$ == 7)

          {

            document.write("<TR>");

            document.write("<TD NOWRAP WIDTH='100%' BGCOLOR='#FFEFD5' height='26'>");

            document.write("<font face='Arial, Helvetica'><B>$$username$$</B> you cannot access your account at this time.<p>Please contact your Security Administrator or Help Desk.</font>");

            document.write("    </TD>");

           document.write("</TR>");

          } //Auth Reason - 7

     

    To :

    //Auth Reason 7 - Account disabled

        else if ($$smauthreason$$ == 7 )

          {

           // check if target is a specific application for which custom error message needs to be displayed

          if ($$target$$.match(/myapp/.*)) {

              //Display application specific error message

            }

            else {

              //Display default error message

            document.write("<TR>");

            document.write("<TD NOWRAP WIDTH='100%' BGCOLOR='#FFEFD5' height='26'>");

            document.write("<font face='Arial, Helvetica'><B>$$username$$</B> you cannot access your account at this time.<p>Please contact your Security Administrator or Help Desk.</font>");

            document.write("    </TD>");

            document.write("</TR>");

            }

          } //Auth Reason - 7

     

    Cheers,

    Ujwol



  • 3.  Re: custom error page when user locked account due to invalid password

    Posted 01-05-2016 11:26 AM

    perfect... thank you . I may use Auth reason code=24 which is for ExcessiveFailedLoginAttempt .