Solved: Re: ACS 3.1 User Account Disable on Failed attempts exceed:

flopes · ‎09-27-2004

I've been looking through all the documentation on ACS 3.1 and can't seem to find the default timeout of failed password attempts. What I'm trying to find out is if there is a timeframe for how long between failed password attempts the counter gets reset. Does ACS keep an infinite running count and after the determined failed attempts the account locks out whether it were 2 mins or 2 weeks between failed attempts or is there a certain time after which failed attempts are cleared?

Thanks in advance.

gfullage · ‎09-27-2004

There is no timeframe associated with this. If the user inputs an incorrect password 5 times in a row (default) over any time period the account is disabled.

ACS keeps a counter of the current number of failed logins for each account in its database, and it resets it back to 0 if there is a successful login. Theoretically though, you could login 4 times incorrectly, wait a year, and as long as your database is still intact login again with an invalid pw and the account will be disabled.

View solution in original post

gfullage · ‎09-27-2004

There is no timeframe associated with this. If the user inputs an incorrect password 5 times in a row (default) over any time period the account is disabled.

ACS keeps a counter of the current number of failed logins for each account in its database, and it resets it back to 0 if there is a successful login. Theoretically though, you could login 4 times incorrectly, wait a year, and as long as your database is still intact login again with an invalid pw and the account will be disabled.

flopes · ‎09-28-2004

Thank you very much, exactly what I was looking for.

Best Regards.