Controlling the Number of Failed Login Attempts
My webMethods Server controls the number of failed login attempts it will allow before it temporarily locks the user account. On the Failed Logins Administration, system administrators can configure the maximum number of failed login attempts for My webMethods users, and the period of time for which My webMethods Server suspends subsequent login attempts.
Changes on the Failed Logins Administration page affect all logins to the server.
To control the number of failed login attempts
1. As system administrator, click Administration Dashboard > Configuration > Failed Logins Administration.
2. In the Configure Failed Logins Behavior section, specify:
The following table lists the properties to configure to control the number of failed login attempts:
Property | Description |
Window Duration | The time interval in milliseconds between subsequent checks for failed login attempts. The default is 30000. |
Max Attempts in Window | The maximum number of login attempts during the window duration. The default is 10. |
Lockout Duration | The time interval in milliseconds for which the user will be locked out of the server. The default is 30000. |
3. Click Apply.