Hi,
We have similar needs where our SOC2 compliance auditor required us to block the user after 5 failed attempt (not 10). I am wondering if Enterprise license provide more access to control that policy since Enterprise license is SOC2 compliance.
There is also a discussion in another thread Detect invalid login attempts and lock user in a rule - #6 by mgreene about a custom rule to address similar needs.
The question that was not answered there was how to obtain the information that the current attempted failed login was the nth consecutive occurrence so we can take action in the rule.
Thanks