This article explores the architecture of authentication in SDP (Cloud & On-Premises), the root causes of admin lockouts, step-by-step recovery procedures, and long-term preventative architecture.
Execute this query to clear all locked statuses: DELETE FROM AaaAccBadLoginStatus; manageengine servicedesk plus admin account locked
SDP supports three authentication modes, each with different lockout behaviors: This article explores the architecture of authentication in
Any of these with an old password will hammer the login endpoint. Create a dedicated AD user svc_sdp_sync with password
Never use a human admin account as the LDAP bind DN. Create a dedicated AD user svc_sdp_sync with password set to never expire (or automate rotation with a credential manager).
SDP Enterprise editions include brute-force protection. If an admin is logged in from one IP and another process attempts login from a different IP with the same credentials, SDP may interpret it as an attack and lock the account.