Last Updated: Jul 26, 2024
Overview
When a user is locked out from logging into an application, the following error is displayed on the login screen:
Your account has been blocked after multiple consecutive login attempts. We’ve sent you an email with instructions on how to unblock it.
The error logs from their failed login show:
{
“errorMessage”: “Your account has been blocked after multiple consecutive login attempts. We’ve sent you an email with instructions on how to unblock it.“,
“success”: false
}
The user never received the unblocking email with instructions.
Applies To
- Blocked Account
- Blocked Access to Application
Cause
- Exceeding the number of Maximum Attempts configured on your Brute-force Protection settings.
Solution
To unblock the users who have been blocked from brute-force protection, follow the video or one of the options below.
- The affected user selects the unblock link in the email notification (if configured).
- Customize the template: Customize Blocked Account Emails
- The affected user changes their password (on all linked accounts).
- An administrator removes the block.
- Management API
- Auth0 Dashboard
- An administrator raises the Maximum Attempts login threshold.