With recent changes where Account lockout is checked in Tree (on 7), there is a there is difference in behaviour from Authentication chains as even if the user lock.
In AM 7.x and 6.5.x when using Authentication modules where the Datasource with a user have inetUserStatus (INACTIVE) with Ignore profile enable, the login can happen. However with tree, this will always fail and complain about User locked even when profile is ignored.
|Tree||❌||❌ (for 6.5 it will be ✅)|
- For AuthModules, you can authenticate as user with user status locked
- Try with Ignore profile and profile required
- Repeat the same with Tree
This seems to be due to an recent security fix. Implementing accountLockoutChecks() in SuccessProcessTreeResult/FailureProcessTreeResult