DSfW: The proper intruder lockout message is not displayed

  • 7014355
  • 26-Dec-2013
  • 26-Dec-2013

Environment

Novell Open Enterprise Server 11 SP1 (OES11SP1)
Domain Services for Windows
DSfW

Situation

Set the intruder detection
Then creates a user in MMC and makes sure the "User must change password at next logon" is checked.
Then the user logs in with an incorrect password and receives the following error:
"The system could not log you on. Make sure your User name and domain are correct, then type your password again. Letters in the passwords must be typed using the correct case."
The new user continues to login with an invalid password until the account is locked.

The same error "The system could not log you on.
Make sure your User name and domain are correct, then type your password again.  Letters in the passwords must be typed using the correct case." is seen until the user enters the correct password. The error in AD reports that the account is locked.
In DSfW, if the user logins in with the correct password and receives this error:
"Your password has expired and must be changed."
And is prompted to enter in a new password. This screen is not seen in AD.
It looks like the password is set, but then this error is returned once the new password is set.
"The User name or old password is incorrect. Letters in the password must be typed using the correct case."

Resolution

Apply November 2013 Maintenance Patch