Jump to content

User account keeps getting suspended


Ricky Watts
 Share

Recommended Posts

One of our user accounts has got suspended several times now and I'd like to figure out why.  I suspect he just keeps entering the wrong password, but can't find anything in the logs that confirm this.  Are there any logs that show why an account has been suspended?  Also are there any other reasons that the system would suspend an account?

Link to comment
Share on other sites

Hi @Ricky Watts

There are two way a user account can become suspended either through incorrect password attempts or an administrator manually changing the account status to suspended.

If you have Direct Database Access enabled you can query the h_sys_security_log table and see the incorrect attempts for a user, they will also show in the EspServerService log available from the admin tool. 

Kind Regards

Trevor Killick

Link to comment
Share on other sites

That's exactly what I was after, thank you :)

 

I've just checked the h_sys_security_log table and it confirms the user did have multiple unsuccessful login attempts before their account was suspended.  I did think that was the case but wanted to confirm that as I'm sure he'll insist he's entering the right password.  Thanks again.

  • Like 1
Link to comment
Share on other sites

  • 3 months later...

I've just had a suspended user - I have no records in h_sys_security_log that mention her (or, indeed, any entries since 11/2016!)

Is there a way to filter to the relevant entries in EspServerService (or is that pointless as they wouldn't be in one and not the other) rather than trawl through the logs?

Finally, aside from password attempts (we use SSO, so that's unlikely) and manual change, could anything else cause this? I certainly didn't do it and I just want to check nothing else could cause it before I go and start pointing fingers in a shouty manner ...

Link to comment
Share on other sites

@DeadMeatGF

Is the user suspended or is the user not able to login to Hornbill? Is it possible that it is down to subscriptions? For example, I'm using 3 of 1000 subscriptions on my instance. If I was utilising 1000 / 1000 subscriptions, user 1001 would not be able to login.

Screen Shot 2017-08-15 at 09.10.20.png

Link to comment
Share on other sites

I'm going to assume it's the block that I've attached - although if there was an indication of the username in the error it would be easier to be certain.

Any reason why this would occur with SSO in the client and a registered mobile device - you shouldn't be able to enter invalid credentials in either of those situations, should you?

Screenshot 2017-08-15 11.07.35.png

Link to comment
Share on other sites

@DeadMeatGF As you can see from the log, 3 wrong attempts were made to login and then the account was suspended. You're right - about a registered Mobile device but if the QR code didn't work for particular reason (e.g. Privacy settings was turned off on the phone, the user has  the option to enter login details manually. 

Link to comment
Share on other sites

Also if you login to Hornbill externally (i.e. not inside your Network or through the browser on your Mobile device), you'll be prompted to enter login details.

Link to comment
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share

×
×
  • Create New...