https://community.cisco.com/t5/network-access-control/authenticating-through-the-firewall/m-p/147406#M6173 <P>We have a PIX 520 firewall. When users try to authenticate, if they miss-type their password they only get one try before they must wait for a time out period. How can I increase the number of attempts allowed before they are denied a username and password prompt.</P> Fri, 21 Feb 2020 18:07:05 GMT mike.mccabe 2020-02-21T18:07:05Z https://community.cisco.com/t5/network-access-control/authenticating-through-the-firewall/m-p/147406#M6173 <P>We have a PIX 520 firewall. When users try to authenticate, if they miss-type their password they only get one try before they must wait for a time out period. How can I increase the number of attempts allowed before they are denied a username and password prompt.</P> Fri, 21 Feb 2020 18:07:05 GMT https://community.cisco.com/t5/network-access-control/authenticating-through-the-firewall/m-p/147406#M6173 mike.mccabe 2020-02-21T18:07:05Z https://community.cisco.com/t5/network-access-control/authenticating-through-the-firewall/m-p/147407#M6174 <HTML><HEAD></HEAD><BODY><P>Hello there,</P><P></P><P>The pix should give three attempts at the password before it fails the authetication. There is no configuration on the pix to change this behavior. Howver, it seems that your description is more a function of the authentication server... If you are authenticating to a radius or tacacs server, the timeout period is probably configured there. Look into the account lockout policies on the server and see if that helps...</P><P></P><P>Marcus</P><P></P></BODY></HTML> Tue, 10 Jun 2003 18:20:10 GMT https://community.cisco.com/t5/network-access-control/authenticating-through-the-firewall/m-p/147407#M6174 msitzman 2003-06-10T18:20:10Z