Symantec Access Management

Hello there,

We have a requirement that application would like to redirect to a custom page when user account is locked after 3 bad login attempt based on the pwd policy. How do we do it? the reason i ask is, we have lot of applications that use the same pwd policy and common redirect same page when the user account is locked... however we just need to display custom error page only for one application when the users account locked.

Thanks.

Hello,

You should be able to achieve this by modifying the default password service page (smpwservices.fcc) something like below:

Change :

//Auth Reason 7 - Account disabled

    else if ($$smauthreason$$ == 7)

      {

        document.write("<TR>");

        document.write("<TD NOWRAP WIDTH='100%' BGCOLOR='#FFEFD5' height='26'>");

        document.write("<font face='Arial, Helvetica'><B>$$username$$</B> you cannot access your account at this time.<p>Please contact your Security Administrator or Help Desk.</font>");

        document.write("    </TD>");

       document.write("</TR>");

      } //Auth Reason - 7

To :

//Auth Reason 7 - Account disabled

    else if ($$smauthreason$$ == 7 )

      {

       // check if target is a specific application for which custom error message needs to be displayed

      if ($$target$$.match(/myapp/.*)) {

          //Display application specific error message

        }

        else {

          //Display default error message

        document.write("<TR>");

        document.write("<TD NOWRAP WIDTH='100%' BGCOLOR='#FFEFD5' height='26'>");

        document.write("<font face='Arial, Helvetica'><B>$$username$$</B> you cannot access your account at this time.<p>Please contact your Security Administrator or Help Desk.</font>");

        document.write("    </TD>");

        document.write("</TR>");

        }

      } //Auth Reason - 7

Cheers,

Ujwol

perfect... thank you . I may use Auth reason code=24 which is for ExcessiveFailedLoginAttempt .