|
Administration Console Online Help
|
Security Realm-->UserLockout
Tasks Related Topics Attributes
Overview
Password guessing is a common type of security attack. In this type of attack, a hacker attempts to log in to a computer using various combinations of usernames and passwords. WebLogic Server provides a set of attributes to protect passwords and user accounts in a security realm. Use this tab to set the attributes.
If a user lockout security event occurs on one node of a cluster, the other nodes in the cluster are notified of the event and the user account is locked on all nodes in the cluster. This features prevents a hacker from systematically breaking into all the nodes in a cluster.
Tasks
Protecting User Accounts
Related Topics
Introduction to WebLogic Security
Managing WebLogic Security
Programmimg WebLogic Security
Developing Security Providers for WebLogic Server
Securing a WebLogic Server Deployment
Upgrading Security in WebLogic Server Version 6.x to WebLogic Server Version 7.0
Security FAQ
The Security page in the WebLogic Server documentation
Attributes
Table 0-24
|
Attribute Label
|
Description
|
Value Constraints
|
|
Lockout Enabled
|
Specifies whether the server locks users out when there are invalid login attempts on their account.
MBean: weblogic.management.
security.RealmMBean
Attribute: LockoutEnabled
|
|
|
Lockout Threshold
|
The maximum number of consecutive invalid login attempts that can occur before a user's account is locked out.
MBean: weblogic.management.
security.RealmMBean
Attribute: LockoutThreshold
|
|
|
Lockout Duration
|
The amount of time (in minutes) that a user's account is locked out.
MBean: weblogic.management.
security.RealmMBean
Attribute: LockoutDuration
|
Units: minutes
|
|
Lockout Reset Duration
|
The amount of time (in minutes) within which consecutive invalid login attempts cause a user's account to be locked out.
MBean: weblogic.management.
security.RealmMBean
Attribute: LockoutResetDuration
|
Units: minutes
|
|
Lockout Cache Size
|
The number of invalid login records that the server places in a cache.
MBean: weblogic.management.
security.RealmMBean
Attribute: LockoutCacheSize
|
|
|
Lockout GCThreshold
|
The maximum number of invalid login records that the server keeps in memory.
MBean: weblogic.management.
security.RealmMBean
Attribute: LockoutGCThreshold
|
|
|
Invalid Login Attempts Total Count
|
The total number of invalid logins attempted since the server has been started and since lockouts have been enabled.
MBean: weblogic.management.
security.RealmMBean
Attribute: InvalidLoginAttemptsTotalCount
|
|
|
User Lockout Total Count
|
The total number of user lockouts that have occurred since the server has been started.
MBean: weblogic.management.
security.RealmMBean
Attribute: UserLockoutTotalCount
|
|
|
Login Attempts While Locked Total Count
|
The total number of invalid logins attempted since the server has been started and since lockouts have been enabled.
MBean: weblogic.management.
security.RealmMBean
Attribute: LoginAttemptsWhileLockedTotalCount
|
|
|
Invalid Login Users High Count
|
The highest number of users with concurrent unexpired or uncleared invalid login attempts.
MBean: weblogic.management.
security.RealmMBean
Attribute: InvalidLoginUsersHighCount
|
|
|
Locked Users Current Count
|
The number of users that are currently locked out of the server.
MBean: weblogic.management.
security.RealmMBean
Attribute: LockedUsersCurrentCount
|
|
|
Unlocked Users Total Count
|
The total number of times users have been unlocked since the server has been started.
MBean: weblogic.management.
security.RealmMBean
Attribute: UnlockedUsersTotalCount
|
|
