LDAP: error code 53 - Too many failed logins

[ahad alam]

Hi, I am using pwm-onejar-2.0.6. I forgot my admin proxy password. So, I had some failed logins. Now, i have changed my admin password through configuration editor and i am trying to login with admin but it provides following error
Directory unavailable. If this error occurs repeatedly please contact your help desk.

5017 ERROR_DIRECTORY_UNAVAILABLE (all ldap profiles are unreachable; errors: ["error connecting as proxy user: unable to create connection: unable to connect to any configured ldap url, last error: unable to bind to ldaps://ipa.example.com:636 as uid=admin,cn=users,cn=accounts,dc=example,dc=com reason: [LDAP: error code 53 - Too many failed logins.\n]"])

the log is given below

2025-03-12T09:37:32Z, ERROR, health.LDAPHealthChecker, error checking configured permission settings:5017 ERROR_DIRECTORY_UNAVAILABLE (error connecting as proxy user: unable to create connection: unable to connect to any configured ldap url, last error: unable to bind to ldaps://ipa.example.com:636 as uid=admin,cn=users,cn=accounts,dc=example,dc=com reason: [LDAP: error code 53 - Too many failed logins.
])

[Jason Rivard]

It looks like your directory server is locking the admin account due to too many intruder attempts, which is probably caused by PWM repeatedly trying to connect using an old password.

I'd recommend you create a new account just for the PWM proxy user and change the PWM config to use it instead, that way PWM won't lock your admin account due to too many bad logins, and you can then set new password for the proxy user in PWM and the directory server at same time.