User lockout self-service

11.2.3. User lockout self-service

The lockout self-service allows authenticated users to lock their user accounts.

This could be for security reasons, e.g. if a user thinks that his password has been stolen or the account has been compromised.

The account can only be unlocked by an administrator (or help desk) and not using the 11.1.2. Unlock self-service.

The user must be logged in and have sufficient access rights in order to use this self-service.

Screen flow (example)

1.
The process starts by asking the user for confirmation:

2.
After the successful lockout, a confirmation is shown, and/or the user is logged out.

Further information and links:

●
Configuration in the Loginapp REST UI:

●
General information and examples: 17.2.5. Protected REST APIs (self-services)
●
Configure a protected self-service flow with an Acknowledge Message Step and a Lock Self-Service Step
●
To automatically log out the user after the lockout, configure a UI for the flow with a corresponding Completion Target. See also 17.3.1.4. Protected self-service UIs plugin

●
Configuration in the JSP-Loginapp: in the Config Editor go to Loginapp >> Self Service Settings >> Lockout Self Service to enable the self-service. It can be reached using the URI /selflockout.