Disable Login attempt for sqlplus

Similar Messages

• Disable login prompt for SAP NW based Xcelsius Dashboard

  Hi all,
  Need assistance to understand what needs to be done in the below case:
  Current scenario:
  1. Developed Xcelsius Dashboard based on SAP NW Connectivity on BO XI 3.1 SP2+.
  2. Configured trust between SAP BW server and BO Server using steps outlined in integration kit(login/accept_sso2_ticket, etc).
  Imported user roles in BOE and enabled SAP authentication.
  After this, WEBI Reports based on Bex queries refresh in Infoview without prompting for Login id/Password.
  3. Configured SAP Server to enable portal/interop switch to display the Xcelsius Dashboard within Infoview which is the existing BI portal. Used Hyperlink object for enabling the link.
  In the hyperlink, I am using the same link which gets generated when I use the option Xcelsius 2008>>file menu>>SAP>>Launch
  Issue: On click of Hyperlink, I get SAP EP Login window. Once I fill up the SAP user id and password, the dashboard comes up
  Server Configuration:All on same domain
  SAP system ID=X(SAP BW server)
  SAP system id=Y(SAP EP Portal)
  BOBJ system Z(BOBJ Server)
  User roles stored in X. Entitlement system defined in Z for SAP BW Server X.
  Dashboard is not available in SAP EP Portal in any folder as of now. Have not created any roles yet.
  As per the various posts and KB articles,
  Do I need to enable SNC for both X and Y? or trust between Infoview and SAP EP portal can be enabled without enabling SNC?
  Just like SAP BW server, does the SAP EP portal also has *.cert files that can be used to exchange with BO Server to enable trust.
  Thanks,
  V Fernandes

  Hi Ingo,
  Thanks for your explanation. I was referring the configuration mentioned in the wiki article for displaying Xcelsius Dashboard in Infoview where this was explained as a possibility. Even though its not Lean.
  Link: [http://wiki.sdn.sap.com/wiki/display/BOBJ/IntegrationofanXcelsiusdashboardinBOE+Infoview]
  The only difference in my case is the use of SAP Authentication instead of Enterprise.
  Thus as per your last update the following workflow is only valid:
  1. User logins to Infoview using SAP Authentication.
  2. User clicks on Xcelsius Dashboard Hyperlink object.
  3. SAP Enterprise Portal login pops up within the Infoview Workspace.
  4. User has to fill in the Login credentials again.
  5. Dashboard load up successfully.
  Please correct me in case I am wrong.
  Thanks for the response.In case there is any other way this can be achieved, then please do let me know. Appreciate for all the help.
  Regards,
  V Fernandes

• Login problem for sqlplus 9i

  Hi All,
  My Oracle is 9i. How can I login as sys directly using sqlplus. I have tried the following command :
  "sqlplus sys/change_on_install@DB01 as sysdba"
  many thanks.

  sqlplus /nolog
  connect sys/password@tnsname as sysdba

• Portal Report for failed login attempts

  Hey Gurus,
  I've some doubts regarind the login mechanism of SAP Portal.
  1) Is it possible to capture the failed login attempts for a portal?
  2) Is there any standard report available where we can have the numbar of failed login attempts to the portal for a specifc user?.
  Say, If a user is trying to access portal. Firts attempt - Failed, Second attempt - Failed Third attempt - Success.
  So is it possible to capture these two failed login attempts by standard way and display it to administrator thru a report?
  Regards
  Abhinav

  SAP Security Audit can be used

• Our system has detected an unauthorized login attempt to your AppIeID from an IP address location different than one you usually use. In order to protect your account, we will disable your AppleID due to our concern for the safety and integrity of the App

  Our system has detected an unauthorized login attempt to your AppIeID from an IP address location different than one you usually use.
  In order to protect your account, we will disable your AppleID due to our concern for the safety and integrity of the AppIe community.
  In order to confirm that you are the rightful owner of this account, we recommend that you click here: My Apple ID.
  I received this e-mail during the night and wondered if is genuine?

  It's a scam to steal your Apple ID and password.
  Delete it.

• Login has been temporarily disabled due to too many unsuccessful login attempts.

  Hello,
  Does anyone know in how long after recieving the message "Login has been temporarily disabled due to too many unsuccessful login attempts. Please try again later." I will be able to login?
  Regards,
  Alex
  Solved!
  Go to Solution.

  There is no generic password, that would create a HUGE security hole. If you have held the reset pinhole down for 15 seconds or so with the unit powered on, then released it, the password should be set to what is on the router label. admin will be the user and when you type the password  you should see what appears to be other characters when you type..
  One person with this issue had to type the password into notepad and copy paste it to get in.
  You can change the  default setting of 5 bad logins but I DO NOT  recommend this  credit to armond_in_nj
  "You can reset the number of allowed unsuccessful logins. Log on to the device, then click on "Advanced." In the far left column, choose "Users." In "Login Configuration" set the desired number of unsuccessful logins. 
  Also be sure to either activate, accept, or save all desired changes prior to changing screens or logging off."
  Personally I have also added and extra user in case I have an issue with admin
  If a forum member gives an answer you like, please give them the Kudos they deserve. If a member gives you the answer to your question, mark the answer as Accepted Solution so others can see the solution to the problem. Thanks !!!
  http://forums.verizon.com/t5/Verizon-net-Email/Fix-for-Missing-Inbox-sent-folders-etc-with-Internet-Explorer-11/m-p/647399

• To send a mail for failed login attempts,.

  We have to implement the mailing system in linux.,to send the mail regarding failed login attempts and ip address of user who attempted the failed login.,any one have the idea on this?
  Regards.,
  Vaaru

  Running an old beta version of RHEL is a bad idea. If you are concerned about security and operation of your OS I suggest to use a more recent release version. You can download, install and use Oracle Linux for free.
  Mail processing of failed login attempts is not a good idea and to my knowledge there is no such built-in system setting. I suggest you read the standard documentation or search the Web for information on how to set up a mail system. You will probably need to create a custom script to process failed login attempts.

• Anyone know's how to make isight camera take snapshot for failed login attempts ?

  I want my macbook pro to take pictures with the isight camera when someone has a failed login attempt ; anyone know of any programs and or apps ? I've searched all over & even called apple support and no luck.
  Thanks !

  Jkensuke wrote:
  If I want to count the number of failed login attempts what might be the best course of action?
  Off the top of my head I figure I could:
  Have a session variable that counts up to number X
  Have a cookie variable
  Insert the users IP address into a database table for each failed attempt and when the form loads I check to make sure there aren't X number of strikes in the last 30 minutes.
  A combination of those might be a good idea. Most hackers are, luckily, amateurs with one-track minds. Create a database table to log failed login attempts. For every failed attempt, log at least the datetime, IP, sessionID, username (which should be unique on your site), reason for failure and failure count.
  In a query following a failed login, verify whether the IP, sessionID or username match any in the failed_login table, and, if so, whether the current datetime is within, say, 12 hours of the last failed login. If yes, increment the failure count by 1. If no, insert a new row in the table.
  Use client-friendly messages to inform your visitors why their login fails. Study failed logins for common patterns. It just might be that you are the culprit, and that you have to improve your login design. There is one good reason for doing all that. Then you will know that those in your failed_login table really had it in for you.
  If your site traffic is high, then consider archiving old data. Throw nothing away!

• How many attempts ( for passcode)  is needed to disable iPad air, it is stolen and I have important information in it.

  how many attempts ( for passcode)  is needed to disable iPad air?  it is stolen and I have important information in it.

  If the iPad was running iOS 7, the thief/finder will not ever be able to use it.
  iCloud: Find My iPhone Activation Lock in iOS 7
  http://support.apple.com/kb/HT5818http://support.apple.com/kb/HT5818
  Apple (and no one else) can not assist (with serial number or iCloud) in finding a lost or stolen iPad.
  Report to police along with serial number. Change all your passwords.
  These links may be helpful.
  How to Track and Report Stolen iPad
  http://www.ipadastic.com/tutorials/how-to-track-and-report-stolen-ipadhttp://www.ipadastic.com/tutorials/how-to-track-and-report-stolen-ipad
  Reporting a lost or stolen Apple product
  http://support.apple.com/kb/ht2526http://support.apple.com/kb/ht2526
  What to do if your iOS device is lost or stolen
  http://support.apple.com/kb/HT5668http://support.apple.com/kb/HT5668
  iCloud: Locate your device on a map
  http://support.apple.com/kb/PH2698http://support.apple.com/kb/PH2698
  iCloud: Lost Mode - Lock and Trace
  http://support.apple.com/kb/PH2700http://support.apple.com/kb/PH2700
  iCloud: Remotely Erase your device
  http://support.apple.com/kb/PH2701http://support.apple.com/kb/PH2701
  Report Stolen iPad Tips and iPad Theft Prevention
  http://www.stolen-property.com/report-stolen-ipad.phphttp://www.stolen-property.com/report-stolen-ipad.php
  General steps to follow for a Stolen iPad
  http://stolen-ipad.com/http://stolen-ipad.com/
  How to recover a lost or stolen iPad
  http://ipadhelp.com/ipad-help/how-to-recover-a-lost-or-stolen-ipad/http://ipadhelp.com/ipad-help/how-to-recover-a-lost-or-stolen-ipad/
  How to Find a Stolen iPad
  http://www.ehow.com/how_7586429_stolen-ipad.htmlhttp://www.ehow.com/how_7586429_stolen-ipad.html
  What NOT to do if your iPhone or iPad is lost or stolen
  http://www.tomahaiku.com/what-not-to-do-if-your-iphone-or-ipad-lost-or-stolen/http://www.tomahaiku.com/what-not-to-do-if-your-iphone-or-ipad-lost-or-stolen/
  Apple Product Lost or Stolen
  http://sites.google.com/site/appleclubfhs/support/advice-and-articles/lost-or-sthttp://sites.google.com/site/appleclubfhs/support/advice-and-articles/lost-or-st Len
  Oops! iForgot My New iPad On the Plane; Now What?
  http://online.wsj.com/article/SB10001424052702303459004577362194012634000.htmlhttp://online.wsj.com/article/SB10001424052702303459004577362194012634000.html
  If you don't know your lost/stolen iPad's serial number, use the instructions below. The S/N is also on the iPad's box.
  How to Find Your iPad Serial Number
  http://www.ipadastic.com/tutorials/how-to-find-your-ipad-serial-numberhttp://www.ipadastic.com/tutorials/how-to-find-your-ipad-serial-number
  iOS: How to find the serial number, IMEI, MEID, CDN, and ICCID number
  http://support.apple.com/kb/HT4061http://support.apple.com/kb/HT4061
   Cheers, Tom

• Select * from which tables for login attempts?

  When I set >
  Home>Administration>Monitor Activity>Login Attempts
  I m looking at all guest and IP adress. Which tables
  give me this select?
  thanks in advance

  Hi,
  You can load the supplied internal apex applications into your own instance, in this case f4350.sql. You can then look at how things are put together.
  Doing this for page 70, the report you asked for, gives you this sql:
  select
  upper(login_name) login_name,
  application,
  owner,
  decode(authentication_method,'FND_ACCOUNT',v('PRODUCT_NAME'),
  'CUSTOM',wwv_flow_lang.system_message('CUSTOM_AUTH_SCHEME_DESC'),
  '$SITE_INTERNAL$',wwv_flow_lang.system_message('SERVICE_LOGIN'),
  '$WORKSPACE_INTERNAL$',wwv_flow_lang.system_message('WORKSPACE_LOGIN'),
  'DB ACCOUNT',wwv_flow_lang.system_message('DBACCOUNT_AUTH_SCHEME_DESC'),
  'LDAP',wwv_flow_lang.system_message('LDAP_AUTH_SCHEME_DESC'),
  authentication_method) authentication_method,
  access_date,
  access_date access_date2,
  ip_address,
  remote_user,
  decode(nvl(authentication_result,0),
  0,m.AUTH_SUCCESS,
  1,m.AUTH_UNKNOWN_USER,
  2,m.AUTH_ACCOUNT_LOCKED,
  3,m.AUTH_ACCOUNT_EXPIRED,
  4,m.AUTH_PASSWORD_INCORRECT,
  5,m.AUTH_PASSWORD_FIRST_USE,
  6,m.AUTH_ATTEMPTS_EXCEEDED,
  7,m.AUTH_INTERNAL_ERROR,
  authentication_result) authentication_result,
  custom_status_text
  from wwv_flow_user_access_log_v l,
  (select
  wwv_flow_lang.system_message('AUTH_SUCCESS') auth_success,
  wwv_flow_lang.system_message('AUTH_UNKNOWN_USER') auth_unknown_user,
  wwv_flow_lang.system_message('AUTH_ACCOUNT_LOCKED') auth_account_locked,
  wwv_flow_lang.system_message('AUTH_ACCOUNT_EXPIRED') auth_account_expired,
  wwv_flow_lang.system_message('AUTH_PASSWORD_INCORRECT') auth_password_incorrect,
  wwv_flow_lang.system_message('AUTH_PASSWORD_FIRST_USE') auth_password_first_use,
  wwv_flow_lang.system_message('AUTH_ATTEMPTS_EXCEEDED') auth_attempts_exceeded,
  wwv_flow_lang.system_message('AUTH_INTERNAL_ERROR') auth_internal_error
  from dual) m
  where security_group_id = :flow_security_group_id
  and access_date >= sysdate - nvl(:p70_time,1)
  and ( :P70_APPLICATION is null or application like '%'||:P70_APPLICATION||'%')
  and (:P70_USER is null or lower(login_name) like '%'||lower(:P70_USER)||'%')
  and (nvl(:P70_RESULT,99) = 99 or nvl(authentication_result,0) = :P70_RESULT)
  Hope that helps,
  Adam

• What's the difference between "login block-for X attempts X within X" and "security authentication failure rate X"?

  What's the difference between, just for example, "login block-for 100 attempts 15 within 100" and "security authentication failure rate 3"?
  Please ignore the numbers, I need to know what the differences are in commands and what they do, what they affect.

  security authentication failure rate number_of_failed_attempts : A global configuration mode command used to specify the maximum number of failed attempts (in the range of 2 to 1024) before introducing a 15-second delay
  login block-for 100 attempts 15 within 100 : Block all access after 15 failed login attempts within 100 Secs for the period of 100Secounds (1.40 Minutes).
  The Cisco IOS Login Enhancements (Login Block) feature allows users to enhance the security of a router by configuring options to automatically block further login attempts when a possible denial-of-service (DoS) attack is detected.
  The login block and login delay options introduced by this feature can be configured for Telnet or SSH virtual connections. By enabling this feature, you can slow down "dictionary attacks" by enforcing a "quiet period" if multiple failed connection attempts are detected, thereby protecting the routing device from a type of denial-of-service attack.

• There have been 7,039 failed login attempts in the last 30 minutes

  Hi,
  I am trying to find out the cause for an OEM alert we received:
  There have been 7,039 failed login attempts in the last 30 minutesThe cause is ofcourse known, but I can't find out why the application anyway was able to do 7000+ login attempts within half an hour. The account should have locked after 10 attempts
  The perticular account has a DEFAULT profile.
  Auditing is on, so if we look into DBA_AUDIT_SESSION it is clearly seen that within 1 minute approx 1200 failed login attempts occured without the account being locked.
  USERNAME USERHOST     RETURCODE      TIME              COUNT
  KRAMPV      DDE18LNB       1017     27-01-2012 13:54     235
  KRAMPV      VSV2SH221     1017     27-01-2012 13:54     271
  KRAMPV      VSV2SH222     1017     27-01-2012 13:54     258
  KRAMPV      VSV2SH223     1017     27-01-2012 13:54     263
  KRAMPV      VSV2SH224     1017     27-01-2012 13:54     266If we retry the login with a incorrect password manually from SQLplus, after 10 login attempts the account gets locked as expected.
  The above login attempts come from three application server of which I don't know how they handle failed logins.
  Can anyone point me into a search direction as to why the account didn't lock. Just for completeness some extra info about the account and the DEFAULT profile:
  User is created with:
  CREATE USER KRAMPV
  IDENTIFIED BY VALUES 'S:123456890'
  DEFAULT TABLESPACE KRAMPVDATA
  TEMPORARY TABLESPACE TEMP
  PROFILE DEFAULT
  ACCOUNT UNLOCK;
  GRANT RESOURCE TO KRAMPV;
  GRANT CONNECT TO KRAMPV;
  ALTER USER KRAMPV DEFAULT ROLE ALL;
  GRANT CREATE MATERIALIZED VIEW TO KRAMPV;
  GRANT CREATE VIEW TO KRAMPV;
  GRANT CREATE TABLE TO KRAMPV;
  GRANT ALTER ANY MATERIALIZED VIEW TO KRAMPV;
  ALTER USER KRAMPV QUOTA UNLIMITED ON KRAMPVDATA;
  ALTER USER KRAMPV QUOTA UNLIMITED ON KRAMPVARCH;The DEFAULT profile has the following settings:
  DEFAULT     COMPOSITE_LIMIT               UNLIMITED
  DEFAULT     PASSWORD_LOCK_TIME          UNLIMITED
  DEFAULT     PASSWORD_VERIFY_FUNCTION     NULL
  DEFAULT     PASSWORD_REUSE_MAX          UNLIMITED
  DEFAULT     PASSWORD_REUSE_TIME          UNLIMITED
  DEFAULT     PASSWORD_LIFE_TIME          180
  DEFAULT     FAILED_LOGIN_ATTEMPTS          10
  DEFAULT     PRIVATE_SGA               UNLIMITED
  DEFAULT     CONNECT_TIME               UNLIMITED
  DEFAULT     IDLE_TIME               UNLIMITED
  DEFAULT     LOGICAL_READS_PER_CALL          UNLIMITED
  DEFAULT     LOGICAL_READS_PER_SESSION     UNLIMITED
  DEFAULT     CPU_PER_CALL               UNLIMITED
  DEFAULT     CPU_PER_SESSION               UNLIMITED
  DEFAULT     SESSIONS_PER_USER          UNLIMITED
  DEFAULT     PASSWORD_GRACE_TIME          7The Oracle database version is 11.2.0.3
  The OS is AIX7.1
  I've been looking on MOS, but was unable to find a clue yets
  Thanks
  FJFranken
  Edit: For the record, after I discovered the above I changed the DEFAULT profile, so the account would not unlock itself anymore. If this problem will occur in the future, maybe we can get more info as the account - if it gets locked- should stay locked now:
  alter profile default limit PASSWORD_LOCK_TIME unlimited;Edited by: fjfranken on 3-feb-2012 2:56

  Girish Sharma wrote:
  I cann't say that resource_limit is not TRUE, because you are saying "If we retry the login with a incorrect password manually from SQLplus, after 10 login attempts the account gets locked as expected.", so it means profile is working for the "KRAMPV" user.
  The interesting thing is USERHOST is changing, so another option is the listener log should also have information about the failed connection attempts.
  My another guess is duplicate user in the database i.e. one is KRAMPV and another is "krampv" (with quotation mark). Just check in dba_users that is there something like exists or not.....
  select upper(username),count(*) from dba_users group by upper(username) having count(*) > 1;
  Regards
  Girish SharmaHi Girish,
  resource_limit is set to FALSE.
  And we've tested the locking with another user, because KRAMPV is used by the application that is running and we didn't want to risk that it got locked
  USERHOST is not changing, there are 4 hosts ( application servers ) doing the same thing, so connection requests are coming from 4 hosts concurrently.
  There is luckily no duplicate user.
  Thanks anyway, we will keep investigating. I also sent the information to the application provider.
  Bye
  FJFranken

• FTP Security - Repeated Login Attempts

  Over the past 2 weeks or so, i've seen about a bazillion of these types of entries in the system log of one of our ftp servers:
  Aug 21 03:39:22 ns ftpd[4099]: ACL Check failed for Administrator
  Aug 21 03:39:22 ns ftpd[4099]: ACL Check failed for Administrator
  Aug 21 03:39:22 ns ftpd[4099]: ACL Check failed for Administrator
  Aug 21 03:39:23 ns ftpd[4099]: repeated login failures from atlantis @ 83.143.18.134 [83.143.18.134]
  Obviously, someone is trying to gain access (unsuccessfully - thank goodness) to the system. The repeated login attempts last anywhere from 5 - 30 minutes, always with the username Administrator. The IP addresses are from all over the world - Europe, Asia, and the US. Why we have a bullseye on us all of a sudden is unknown. This server has been running for close to three years now, and I've never seen attempts with this frequency.
  The Administrator user doesn't have ftp access on this system, so I'm not too worried about these break - in attempts. (Or should I be?)
  My formal question is this - is there anything that can be done with the out of the box ftp server to deter these attempts, or at least block attempts by IP address temporarily after several failed logins?
  What approach have others used? Is it time to start looking at another ftp server software package that has more security settings?
  Any help / input would be appreciated.
  I miss my Apple IIc   Mac OS X (10.4.6)  

  Thanks for the feedback Camelot. I'll post my replies under the quoted text below.
  If you're running a public server you're going to get
  hits you don't want. Fact of life.
  Script kiddies around the world are going to try
  whatever username and password they can think of to
  log into your server.
  Having a different FTP server isn't going to change
  that - any other server is just as vulnerable to
  brute-force attacks as the built-in server. How do
  you think a different server is going to react any
  differently?
  I don't know - that's why I asked.
  I've only used the bundled ftp server with OS X server. I was wondering if there was a ftp software package that temporarily blocked IPs after 'n' number of invalid login attempts or something like that. And thought I'd see if anyone had any experience in this department.
  Your only safeguards are some combination of:
  1) use your firewall to restrict access to the server
  to known/trusted IP addresses
  Unfortunately, a few of our users use dynamic IPs. Which is a bummer.
  2) use a VPN to connect to the server, then connect
  to the internal address
  We've used this method successfully before. We might go back to it...
  It was a 'pain' for some of our remote users and I finally gave into the nagging to do away with it because I spent way too much time providing phone support for remote users. I know, I know, it's just laziness on my part.
  3) use a different protocol that supports public key
  authentication (and turn off password
  authentication), e.g. SFTP.
  I've looked into SFTP for the OS X ftp server on these boards and most discussions don't seem to resolve into a definitive solution for implementing SFTP on the OS X server. Anyone get this working properly? I'd love to set it up to support SFTP only and disable password authentication.
  I'm leaving the original question open - I'd like to know if there is ftp software that works well on OS X server that would temporarily block an IP after 'n' invalid attempts, or has something similar.
  Or for someone to tell me I'm just being paranoid - and that the current setup should be OK.

• Blackberry ID - forgot password, forgot password recovery info, exceeded login attempts, why can't BB send me email to reset password.

  THE ISSUES ARE:
  1. FORGOT PASSWORD
  2. FORGOT PASSWORD RECOVERY INFO
  3. EXCEEDED ATTEMPTS TO LOGIN
  I HAVE READ OTHER PEOPLES FORUM PROBLEMS THAT ARE THE SAME. WHEN I FOLLOWED LINKS THAT SUPPORT GAVE THERE IS NO SOLUTION TO ACTUALLY FIX THE PROBLEM. 
  What I need is simply this: Blackberry to send me a RESET PASSWORD link to the email I have registered with Blackberry WITHOUT HAVING TO PROVIDE PASSWORD RECOVERY INFO. This will enable me to bypass unknown recovery password info and access my Blackberry ID account. 
  Why haven't I been able to find a solution to fix the problem?
  BECAUSE IT DOESN'T APPEAR TO EXIST........ ANYWHERE..... EVEN ON YOUTUBE BLACKBERRY ARE RUNNING AN OUT OF DATE SOLUTION CENTRE.
  When looked online to Blackberry youtube video it shows a solution that doesn't exist! WHY? BECAUSE IT WAS UPLOADED IN 2011. DUH. http://www.youtube.com/watch?v=lvdRb4qNG1M
  If I can't remember my password or recovery password info there is NO other option available that will send me a reset password via email so I can keep my current BB ID. 
  KB34776 - does not apply because you HAVE TO BE ABLE TO REMEMBER YOUR RECOVERY PASSWORD!
  CHECKED THIS OUT... 
  Workaround
  If the BlackBerry ID password has been forgotten but the answer to the password recovery question is known, select Forgot Password on the smartphone and answer the recovery question to generate a password reset email. Follow KB28685 to complete this process.
  If the BlackBerry smartphone user knows the email address used for the BlackBerry ID login but is unable to remember the associated password then it is possible to reset the password using the steps below:
  Note: If the BlackBerry ID account is not confirmed, it is necessary to provide the answer to the password recovery question as part of the web based password reset flow.
  To see if a BlackBerry ID account is confirmed, log in to the BlackBerry ID account, select Account Details and locate the Email Status field.  For instructions on confirming the BlackBerry ID account follow KB34137.
  Browse to the following URL using a desktop browser, the BlackBerry Browser on the BlackBerry smartphone, or the Browser on the BlackBerry PlayBook: http://blackberryid.blackberry.com/bbid/recoverpassword
  Enter the BlackBerry ID Username (email address) and the CAPTCHA characters, then clickSubmit.
  Enter the Answer to the Password Recovery Question, then click OK.
  Note: Answering the recovery question is only required if the BlackBerry ID account is not confirmed.
  A confirmation message will be displayed A password reset email has been sent to [email protected], at which point, a reset email will be delivered to the associated email address inbox.
  Log in to the email account associated to the BlackBerry ID using the desktop browser, BlackBerry Browser on the smartphone, or the Browser on the BlackBerry PlayBook.
  Locate the password reset email and select the Change your BlackBerry ID password link.
  Note: The BlackBerry ID reset email will come from [email protected]. If the email is not found in the inbox, check the mailbox's Spam or Junk folder.
  When the password reset page loads, enter the Answer to the Password Recovery Question, enter the New Password, Confirm Password, then click Submit.
  A confirmation message will display once the changes have been saved successfully.
  Moving forward use the newly created password whenever logging into BlackBerry ID.
   If the BlackBerry smartphone user does not know the email or password that was used for the BlackBerry ID, the BlackBerry ID will be locked out after 10 unsuccessful login attempts. See KB24157 for BlackBerry ID lockout behavior.
  THEN CHECKED KB24157......
  Overview
  BlackBerry ID is the master key to BlackBerry smartphone products, sites, services and applications, including BlackBerry Protect and the BlackBerry App World storefront.
  To prevent unauthorized access to the account, the BlackBerry ID will become locked out after a number of failed attempts. See the information below for an outline on the expected behavior:
  Local Authentication Lockout 
  On BlackBerry PlayBook and BlackBerry smartphones if the user enters their BBID password incorrectly 10 times on the BBID sign in screen, verify password screen, or BBID Edit screens, they are LOCKED OUT of all the following functions on that BlackBerry device for 15 minutes:
  Authenticating with their BlackBerry ID on the sign in screen
  Authenticating with their BlackBerry ID on the verify password screen
  Authenticating with their BlackBerry ID on the BBID edit screens 
  Note: The user can still log in on the web or any other devices associated with their BlackBerry ID. They are only locked out on the device where the 10 incorrect attempts occurred.  On the locked out device, after 15 minutes, they get 1 try to provide the correct password on the sign in and/or verify password screens. If they fail to enter the correct password, they are locked out for an additional 15 minutes on that device.
  Account Server Lockout
  Users have total of 10 attempts to enter their password correctly against the BlackBerry ID Account Server.
  The scenarios that increment the Account Server lockout counter are as follows:
  Providing an incorrect password anywhere on the BlackBerry ID web portal (blackberry.com/blackberryid)
  Providing an incorrect password within the BlackBerry ID Edit feature on any BlackBerry device or BlackBerry PlayBook
  Note: if a user provides an incorrect password 5 times on the BlackBerry ID web portal (blackberry.com/blackberryid), and then 5 more times on the BlackBerry ID Edit feature on their BlackBerry PlayBook, the cumulative number of failed attempts is 10. Once the user has made 10 incorrect attempts to provide their password against the Account Server, they are locked out of the Account Server PERMANENTLY until they reset their password.
  See KB26361 for information to reset a BlackBerry ID password
  Note: The Account Server Lockout does NOT prevent the user from local authenticating on devices  (the user can still authenticate on the sign in and verify password screens on their BlackBerry devices).
  Forgot Password Lockout
  If the user answers their Security Question incorrectly 10 times, they are locked out for 15 minutes of Forgot Password functionality on all interfaces such as:
  BlackBerry website (blackberry.com/blackberryid)
  BlackBerry PlayBook
  BlackBerry smartphone
  Note: After 15 minutes, they get 1 try, and if they fail to answer the question correctly, they are locked out for an additional 15 minutes.
  THAT DIDN'T WORK SO NOW ITS BACK TO..... KB26361
  Overview
  To change the BlackBerry ID password, complete the steps below for the specific device:
  From the BlackBerry 10 smartphone:
  Swipe down from the top bezel on the home screen and select Settings.
  Scroll down and select BlackBerry ID.
  Select Change Password.
  Enter the current password in the Current BlackBerry ID Password field.
  Enter the new password in the New BlackBerry ID Password and Confirm New Passwordfields.
  Select Submit to complete the password change.
  To confirm the change You have changed your password will be displayed.
  Also, if the BlackBerry ID password has been forgotten, select Forgot Password on the smartphone and answer the recovery question to generate a password reset email. Follow KB28685 to complete this process.
  Note: When using the recovery question password reset method, the generated email will be delivered to the BlackBerry 10 smartphone if the BlackBerry ID email address has been setup via Settings >Accounts
  From a computer:
  Visit http://www.bbid.com/ from a PC or BlackBerry smartphone browser.
  Click Log in.
  Enter the BlackBerry ID Username (email address) and password, then click Sign In.
  Click Account Details.
  Next to Password, click Edit.
  Enter in the current password, followed by the new password. Enter the new password again in the confirm password field, then click Save.
  Click Done to exit from the BlackBerry ID account information screens.
  From the BlackBerry smartphone running BlackBerry 6:
  Navigate to Options > Third Party Applications > BlackBerry ID.
  Click on Change next to BlackBerry ID Password.
  Enter in the current password, followed by the new password. Enter the new password again in the confirm password field, then click OK.
  A confirmation message will display Your password has been successfully changed.
  Click OK.
  From the BlackBerry smartphone running BlackBerry 7:
  Navigate to Options > Device > BlackBerry ID.
  Click on Change next to BlackBerry ID Password.
  Enter in the current password, followed by the new password. Enter the new password again in the confirm password field, then click OK .
  A confirmation message will display Your password has been successfully changed.
  Click OK.
  From the BlackBerry Playbook tablet:
  Navigate to the Options icon.
  Select BlackBerry ID.
  Click on the Edit button next to Change Password.
  Enter in the current password, followed by the new password. Enter the new password again in the confirm password field, then click Submit.
  A confirmation message will display You have changed your password.
  Click OK.
  If the password for a BlackBerry ID account has been forgotten and the login is unsuccessful, use the following process to reset the password.
  Note: If the BlackBerry ID account is not confirmed, it is necessary to provide the answer to the password recovery question as part of the web based password reset flow.  To see if a BlackBerry ID account is confirmed, login to the BlackBerry ID account, select Account Details and locate the Email Status field.  For instructions on confirming the BlackBerry ID account follow  KB34137.
  To generate a password reset email, complete the following:
  Browse to the following URL using a desktop browser, the Browser on the BlackBerry smartphone or the Browser on the BlackBerry PlayBook: http://blackberryid.blackberry.com/bbid/recoverpassword
  Enter the BlackBerry ID Username (email address) and the CAPTCHA characters, then clickSubmit.
  Enter the Answer to the Password Recovery Question, then click OK. (Answering the recovery question is only required if the BlackBerry ID account is not confirmed)
  A confirmation message will be displayed A password reset email has been sent to [email protected] , at which point, a reset email will be delivered to the associated email address inbox.
  Login to the email account associated to the BlackBerry ID using the desktop browser, BlackBerry Browser on the BlackBerry smartphone or the browser on the BlackBerry PlayBook.
  Locate the password reset email and select the Change your BlackBerry ID password link.
  Note: The BlackBerry ID reset email will come from [email protected] If the email is not found in the inbox, check the Spam or Junk folder.
  When the password reset page loads, enter the Answer to the Password Recovery Question, enter the New Password, Confirm Password, then click Submit.  
  Note: Answering the recovery question is only required if the BlackBerry ID account is not confirmed. 
  A confirmation message will display once the changes have been saved successfully.
  Moving forward use the newly created password whenever logging into BlackBerry ID.
  Note: If the BlackBerry ID email address is a BlackBerry mail address (e.g. <username>@tmo.blackberry.net), the BlackBerry ID password reset email will not be received on the BlackBerry smartphone. Since the BlackBerry mail address is not accessible from a computer, the steps outlined in KB28111 will need to be performed.
  IT ALL LEADS BACK TO THE SAME UNHELPFUL NON-SOLUTION OF USE THE PASSWORD RECOVERY QUESTION.... 
  Can the tech department of Blackberry please sort out this ridiculous unhelpful system by sending customers a direct email if password is forgotten so they can reset without having to go through the above without finding a solution. 
  THANK YOU.

  Hi and Welcome to the Community!
  Please see this "sticky" post, along with the threads to which it links, for helpful information to guide you as you proceed:
  http://supportforums.blackberry.com/t5/Social-Lounge/How-This-Site-and-Formal-Support-Work/td-p/2540...
  Hopefully, this information will be of use to you.
  That said, it sounds like you have exhausted all of the automatic recovery methods...but just in case, please see this "sticky" post for helpful information concerning your BBID situation:
  http://supportforums.blackberry.com/t5/BlackBerry-World/How-to-regain-access-to-your-BBID/td-p/25467...
  Hopefully, this information will be of use to you.
  But do please keep in mind that security is a 2-way street...the human element play an equal part in that security, and you have failed at that in this situation, yet desire for the automated methods to still recover for you. Such just isn't possible, because your failure has exceeded the capabilities of the automated methods.
  Hence, you likely need human intervention from an actual BB representative, which is not available in this forum (as discussed in the first link I gave you above). But, the methods to attempt to seek human intervention are posted within the 2nd link I gave you.
  Cheers, and Good Luck!
  Occam's Razor nearly always applies when troubleshooting technology issues!
  If anyone has been helpful to you, please show your appreciation by clicking the button inside of their post. Please click here and read, along with the threads to which it links, for helpful information to guide you as you proceed. I always recommend that you treat your BlackBerry like any other computing device, including using a regular backup schedule...click here for an article with instructions.
  Join our BBM Channels
  BSCF General Channel
  PIN: C0001B7B4   Display/Scan Bar Code
  Knowledge Base Updates
  PIN: C0005A9AA   Display/Scan Bar Code

• Site Login Behavior For SharePoint Foundation 2013 Users With Expired Passwords?

  What are the most user-friendly ways of getting external users with expired AD passwords back into the SharePoint site with a new working password?
  We already send automated email notifications to users reminding them to change their soon-to-expire passwords.  However, sometimes they miss seeing the email notifications before the password expires (such as after returning from vacation or just carelessness
  and lack of attention to email messages) or they see the warning messages and forget to act on it.
  When this happens and they try to log into the SharePoint site from the Internet, their login fails without telling the user the reason they can't log in is because their password expired.  So, they end up confused and call the help desk to get their
  password reset.
  Is there a way to set up SharePoint Foundation 2013 login in a similar way to the OWA login so that, when a user with a correct but expired password tries to log in, it gives them a prompt to set a new password right there rather than just an error indicating
  their login failed for unknown reasons or password is "incorrect?"

  It could be done. You get a different event log entry for an expired login attempt than for a wrong password, 4625 events denote a login failure and an error ID of 23 denotes a logon failure.
  A naff, but simple, approach would be to create a tool that checks your server logon event log for 4625 entries and then emails that user, or the help desk, or security, that they're trying to get onto your system with expired credentials.
  For a more polished experience you've got a lot more work and bluntly it's going to be impractical for you. You'd have to re-write sections of the SharePoint authentication process or intercept the process, both are risky and not a good idea to try.
  There's a really interesting paper here that might be of interest, it won't help you in your current situation but it might shed more light on the overall authentication/authorisation process.
  http://www.sans.org/reading-room/whitepapers/forensics/windows-logon-forensics-34132