Hello,
User hasn’t use OTP but in logs we have many attempts of connect with wrong OTP pin.
Everyday we have to reset failcounter because many users are blocked after 10 wrong pin attempts.
Do you have any idea what’s goin on and how to solve it ?
Regards
Think about the time before you used privacyIDEA.
What would you say, if you have a lot of “wrong passwords” in the logs, but your users did not try to log in?
Right. This seems to be the same situation.
There is a setting “increase failcounter on false PIN”.
You can set this to false.
Or leave it this way and reset the failcounter after a certain period of time.