Unable to get LOCKED_OUT status from /api/v1/authn endpoint even after enabling the "Show lock out failures" setting

According to Authentication | Okta Developer , if the password policy is configured to hide lockout failures, a 401 Unauthorized error is returned. This is the default behaviour because Okta configures password policies to hide lockout failures by default.

image1438×332 23.5 KB

However, even after enabling the “Show lock out failures” setting for the password policy, I still get 401 Unauthorized errors via the /api/v1/authn endpoint for locked out user accounts, whether using correct or incorrect credentials

I’ve also disabled the User enumeration prevention feature, as explained in Okta Support Center (Lightning)

Screenshot 2026-03-29 at 4.48.28 PM1406×618 53.1 KB

On the UI side, I see the following, whether using correct or incorrect credentials :

Screenshot 2026-03-29 at 4.58.46 PM844×648 28.4 KB

Thank you for reaching out here on the Okta Developer Forum. We noticed that your question is more closely related to AuthN Endpoints. To ensure you receive the most accurate and timely assistance, we recommend reposting your query on Okta’s Community at: https://support.okta.com/help/s/community

Okta’s teams on the Community are better equipped to provide the comprehensive support and guidance you need, as they have the specialised knowledge and expertise in this domain.