The User Lockout Policy defines the rules that prohibit users, who may be trying to misuse the system, from entering the system.
To access the user lockout policy options:
- In the User Lockout Policy section of the Access tab, click Edit. The User Lockout Policy dialog box appears.
- The following are the account lockout policy options:
- Lockout if account inactive more than: Enter the maximum number of days the account can be inactive before it is disabled.
- Lockout if login failures exceed: Enter the number of invalid login attempts permitted before the account is disabled.
- Reset login failure count after: If the Lockout if login failures exceed option is selected, and the user does not exceed the number of attempts in the attempts field, the system will restart the lockout count if the user waits the amount of time specified here (in minutes) from the last failed login attempt until he tries to login again. For example, if the lockout attempts option is set to 3, and the reset option is set to 5 minutes, then after the second failed attempt, if the user wants to avoid lockout, the user should wait 5 minutes before attempting to log in again. After waiting, the user will have 3 new attempts to log in.