Configuring a Brute-Force Attack Protection
Protection from a brute-force attack is configured per brand, therefore you need to first prepare a brand to set up brute-force attack protection.
To set up a brute-force attack protection, complete the following steps:
- In Operations PCP, go to Services > Identity Service > Brute-force Protection.
- Select a brand for which you want to configure the protection.
- Enable the protection by selecting the Enable brute-force attacks protection option.
-
Specify the following parameters:
- Period for failed login tracking (minutes): the time period (in minutes) during which the system tracks failed log-in attempts.
- User lockout threshold (minutes): the maximum number of authentication attempts after which a user is blocked.
- User lockout period (minutes): the time period (in minutes) for which a user is blocked due to too many failed log-in attempts.