Configuring user account lockout

Available from 9.2.8. By default, user account is locked for 5 minutes after the user attempts to log in to BigFix Inventory more than 10 times within 5 minutes. You can change the default settings or disable the user account lockout.

About this task

The lockout mechanism is enabled by default. To disable it, set the value of the user_lockout_enabled parameter to false.

Procedure

  1. Go to Management > Advanced Server Settings.
  2. Specify conditions under which the user account is locked.
    • To specify the maximal number of failed login attempts, set the value of the user_max_login_retries parameter. For example:
      user_max_login_retries = 5
    • To specifies the period during which the user can try to log in to the application, set the value of the user_retry_time_period. For example:
      user_retry_time_period = 10

      When the maximal number of failed login attempts is exceeded within this period, the account is locked.

    • To specify the period for which a user cannot log in to the application after the account is locked, set the value of the user_lockout_length. For example:
      user_lockout_length = 10
    Tip: To learn more about each parameter, see: Advanced server settings.