You use the Security Controls action
in the Security Groups and Users applications to enable login tracking.
Login tracking enhances security by limiting the number of incorrect
passwords a user can enter when attempting to sign in.
Before you begin
You must enable login tracking to control the number of login
attempts allowed for a user. If you set the number of login attempts
without enabling login tracking, the asset management system does
not block the user when the number of maximum number of login attempts
is exceeded.
About this task
When you enable login tracking, the asset management system
logs all sign in attempts, successful and unsuccessful. You can specify
the maximum number of unsuccessful sign in attempts. If a user exceeds
the maximum number of unsuccessful attempts, the status of the user
record is changed to
BLOCKED. The user is prevented
from logging in until an administrator uses the
Change
Status action to set the status back to
ACTIVE.
Procedure
- In the Security Groups or Users application, select the Security
Controls action.
- In the Security Controls window, specify
whether you want to enable the login tracking:
Option |
Enable Login Tracking |
Enabled login tracking |
Selected |
Disabled login tracking |
Cleared |
- Enter values in the following fields:
Option |
Description |
Login Attempts Allowed |
The number of times a user can incorrectly enter their user
name or password before being blocked from the asset management system. |
Password lasts this Number of Days |
The number of days a user password is valid. If you do not
want the password to expire, leave this field empty. |
Days Before Password Expires to Warn User |
The number of days before the user receives an expiration
warning message. |
Days Before Previously Used Password can be Reused |
The number of days before a user can use a previously used
password. If this value is 0, the asset management
system does not check for password reuse. |
- Click OK.