After the lockout duration elapses, the user gets three additional attempts without any lockout duration.In this case, the user will be locked out for 5 minutes. After failing the third attempt, the user is temporarily locked out for the time that is specified in the lockout duration.The user is allowed three attempts without any lockout duration. If the settings are set to Temporary Lockout (number of attempts) = 3, Permanent Lockout (number of attempts)= 2,Īnd Lockout Duration (minutes) = 5, the following behavior occurs: There are two lockout thresholds, the temporary lockout threshold and the permanent lockout threshold, as well as a lockout duration period. Here's the basics (taken from the doc referenced above) The concept is that someone shouldn't be able to lockout your actual AD account by failing on the SSPR product. It talks about the lockout duration, lockout threshold and permanent lockout parameters, as well as other aspects of configuration. Have you been working from this document?
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |