By default, the storage servers are configured to lock system accounts after five consecutive failed authentication attempts.
To change this threshold, perform this procedure.
To comply with U.S. Department of Defense security requirements, specify a value of 3. If necessary, replace that value with one that is compliant with your local site policy.
# /opt/oracle.cellos/host_access_control pam-auth --deny 3
# /opt/oracle.cellos/host_access_control pam-auth --status | grep deny=