Fortinet black logo

Cookbook

Configuring the maximum log in attempts and lockout period

Copy Link
Copy Doc ID 9bd2f947-ece6-11ec-bb32-fa163e15d75b:279661
Download PDF

Failed log in attempts can indicate malicious attempts to gain access to your network. To prevent this security risk, you can limit the number of failed log in attempts. After the configured maximum number of failed log in attempts is reached, access to the account is blocked for the configured lockout period.

To configure number of maximum log in attempts:

This example sets the maximum number of log in attempts to five.

config user setting

set auth-lockout-threshold 5

end

To configure the lockout period in seconds:

This example sets the lockout period to five minutes (300 seconds).

config user setting

set auth-lockout-duration 300

end

Failed log in attempts can indicate malicious attempts to gain access to your network. To prevent this security risk, you can limit the number of failed log in attempts. After the configured maximum number of failed log in attempts is reached, access to the account is blocked for the configured lockout period.

To configure number of maximum log in attempts:

This example sets the maximum number of log in attempts to five.

config user setting

set auth-lockout-threshold 5

end

To configure the lockout period in seconds:

This example sets the lockout period to five minutes (300 seconds).

config user setting

set auth-lockout-duration 300

end