09-11-2018 02:54 AM - edited 07-05-2021 09:09 AM
Hi, can anyone tell me exactly what the difference between suppress and reject is please? Because when you look at the info it says 'Suppress' is to supress from audit logs AND to reject, and to reject is to reject......eh??
Can't find much on interweb either.
Any help appreciated thanks.
Solved! Go to Solution.
10-15-2018 08:09 AM
Suppress as per your config means if the client has failed authentication 2 times in 5 minutes, then don't report failure in logs everytime the client failed after first 2 times, only report it every 15 minutes once.
Reject as per your config means after total 5 failures, don't process client request for authentication for 60 minutes.
10-15-2018 04:38 AM
10-15-2018 06:21 AM
Hi,
Please refer this document for client suppression:
10-15-2018 06:30 AM
10-15-2018 06:41 AM - edited 10-15-2018 06:42 AM
Yeah Suppress will reduce the repeated logs & reject will stop the failed authentication of endpoint for mentioned time period.
Thanks,
Aravind
10-15-2018 06:47 AM
yeh it's just that last sentence about the suppression that was confusing me, it looks as if this could reject too. Thanks all.
10-15-2018 08:09 AM
Suppress as per your config means if the client has failed authentication 2 times in 5 minutes, then don't report failure in logs everytime the client failed after first 2 times, only report it every 15 minutes once.
Reject as per your config means after total 5 failures, don't process client request for authentication for 60 minutes.
10-15-2018 08:13 AM
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide