Rally - Automatic Disabling of Users locked until 3000-01-01
Article ID: 57603
Updated On:
Products
CA Agile Central On Premise (Rally)
CA Agile Central SaaS (Rally)
Issue/Introduction
When trying to log into Rally, the user may be sent an email indicating their account is locked until the year 3000.
Environment
Release:
Component:
Cause
Rally has put security measures in place for users who have not logged in for a period of a year or more (>=365 days) that will automatically lock the account resulting in the password reset email stating that the account has been locked until 3000-01-01.
This will occur even when SSO is being used as the primary authentication system since this is an internal routine that runs independently of the authentication system in use.
Resolution
There are specific steps that need to be taken in order to unlock an account that has been inactive.
Below are the steps to take to re-enable the user account when using Rally authentication:
- A Subscription Admin will need to unlock the user account.
- The User should then use the "Forgot Your Password" link on the Rally login page to trigger a password reset email
- Users should use the link provided in the email to reset their password
- Users will then need to login with their new Rally password
- Then immediately log out of Rally
- Log back in again
Since SSO users will be maintained/provisioned by their internal SSO team and not Rally, users can still login to Rally using SSO authentication when this occurs, BUT to clear the message the Subscription Administrator will need to "unlock" the user.
- A Subscription Admin will need to unlock the user account.
- Users will then need to login with their SSO credentials
Feedback
Yes
No
Powered by
