Specify lockout for failed login attempts

The system provides inactive script actions that enable you to specify the number of failed login attempts before a user account is locked and to reset the count after a successful login.

Before you begin

Role required: admin

Procedure

Navigate to System Policy > Script Actions to view or activate the scripts.
SNC User Lockout Check with Auto Unlock
  • Uses the value of the glide.user.max_unlock_attempts property to set the limit for failed login attempts.
  • Unlocks the user account after the time period that is specified for the glide.user.unlock_timeout_in_mins property. If no value is specified, then the system unlocks the user account after the default period of 15 minutes.
SNC User Lockout Check Tracks the number of failed login attempts and locks the user account after a specified number of failed login attempts (default: 5).
SNC User Clear Updates the user record after a successful login: Resets the number of failed login attempts and updates the date of the last login.

What to do next

Each time a user attempts to log in, the action is recorded in an event log. You can view a log of failed login attempts.

  1. Navigate to System Policy > Event Logs.
  2. Filter for login.failed in the Name field. You can view the attempted login name, date, and IP address logged for the attempt.