Window login screen does not display information of user account locked

[ashishsabu]

Hello Team,

Problem: Windows login screen does not display information of user account locked.

Setup Details: I have an Active Directory (AD) environment with both a Primary and Secondary Domain Controller. Multiple Windows servers and client systems are connected to these domain controllers for authentication purposes.

MultiOTP Setup: The multiOTP server is installed on the Domain Controller, and the multiOTP Credential Provider is deployed on all connected Windows systems to enable two-factor authentication (2FA) using Time-based One-Time Passwords (TOTP).

Configuration: I have set the user lock condition to activate after 4 failed login attempts, as configured below:
max_block_failures = 4
max_delayed_failures = 4

FYI: I have raised a ticket with multiOTP, where they mentioned that the issue is related to the multiOTP Credential Provider. They provided the following solution, which allows me to choose to display multiOTP error messages when login is not successful: [MultiOTP Issue #248] (multiOTP/multiotp#248)

Question: Is it possible to display user account locked status/details on the login screen, where I need to provide the TOTP.?

Thank you in advance.

Best Regards,
Ashish

[multiOTP]

Hello,
We put your request in the wishlist. It should be available in the next release.

Best regards