Starting with version 1.15.0 Brute Force Detection is enabled; so in case the algorithm detects a brute force attempt it will temporarily disable the user.
When a user is temporarily locked and attempts to log in, the default Invalid username or password error message is displayed.
This message is the same error message as the message displayed for an invalid username or invalid password to ensure the attacker is unaware the account is disabled.
Keeping roles and permission in sync across tenants
Call the contract synchronization script/job to trigger contract synchronization in MACMA. See ansible playbook set_macma_contract_synchronization.yml (This replaces the prior workaround of adding and then deleting existing contracts)
Service-to-Service communication
Some services require access to another service, like PPM requiring a role of MMPD to access master data. Role assignments to service accounts have to be set up and be maintained by operators manually for every tenant.