I have a requirement from a customer to block or force a password change after 5 invalid login attempts. Brute force is not configurable. How can I do this in a rule or other way?

Detect invalid login attempts and lock user in a rule

mgreene February 21, 2019, 7:31am 6

Hello,
I have a question regarding the same requirement and a rule I am building to implement it.
Is there a way to access the count used by the built-in trigger mentioned in this link?

Or does the count of failed logins need to be generated dynamically by querying the logs?

Thanks,
-Matthew

2 Likes

Allow us to config the default triggers of Brute Force Detection!

Topic		Replies	Views
Rule: detect failed login and count Help rules , login	6	4421	January 8, 2024
Lock user after X attempts of login and unlock after a set Time Help	2	9142	January 26, 2023
Access to counter of invalid login/password in custom login form Feedback	1	1344	October 14, 2022
How to detect and count user login failed attempts Help login	0	1189	November 1, 2022
Brute-force Block Without Password Attempt Failure in Logs Knowledge Articles brute-force , failed-login , invalid-state	0	887	September 8, 2023

Detect invalid login attempts and lock user in a rule

Related Topics