Lock out status is not obtained in the authenticate API response

I am using okta-auth-js version 7.2.0 in an Angular application.
In the lockout scenario, while invoking the idx.authenticate() API, the account gets locked and we get the email stating the same.
But the API response doesn’t have any message that indicates that the account is locked.
I’ve confirmed that the “Show lock out failures” option is checked from Admin dashboard → Security–> Authenticators–>Password -->“Show lock out failures”.

This can happen if User Enumeration Prevention is enabled to ensure details regarding the usernames associated with the org are not exposed. Documentation regarding this feature can be found at this link.

1 Like

This topic was automatically closed 24 hours after the last reply. New replies are no longer allowed.