Auth0 Home Blog Docs

Block ip once after 5 incorrect logins in 10 minutes

login

#1

I’m trying to implement my own method of preventing login once 5 incorrect logins occur in 10 minutes. I considered using a rule but it won’t be fired as a successful login is required to run rules. I understand there is auth0 anomaly detection but it is not going to satisfy the criteria I want.


#2

Could you please elaborate on what anomaly detection is missing that you would need?


#3

I would like to be able to set my own failed login rules to 5 incorrect logins in 10 minutes from an ip address for a user. Anomaly detection is 10 failed logins from the same ip address for a user. Basically a way to customize anomaly detection to meet what I want.


#4

@richard.dowinton Any update on this? I also need to customize the brute force protection rules