Configure security for user logon

Configure settings to prevent users from logging in to IBM® OpenPages® with Watson™.

Locking a user account prevents the user from logging in to OpenPages with Watson. However, the user is still an active user in the system, and can be selected through the user selector.

Users can be locked automatically if they exceed a set number of unsuccessful login attempts. If the user is locked out because they forgot their password, you can unlock their account and reset their password from the View, Edit, or Disable User page. For more information, see Modifying user accounts. If there is concern that the login attempts are malicious, contact your security department.

The User Locking folder contains the following settings that control the locking behavior of OpenPages with Watson.

Administration > Settings > Platform > Security > User Locking
Values: Click a setting to open its detail page, and type a value in the Value field.
Table 1. Locking values
Value Description
Enabled Sets whether the User Locking settings are active. When the value is set to true, users are locked after they unsuccessfully try to log in more than the Maximum Allowed Attempts. If false, there is no limit to failed login attempts and the remaining settings are not honored.
Maximum Allowed Attempts Sets the maximum number of times that a user can unsuccessfully try to log in to the application before the account is locked. The Unsuccessful Login Window setting applies a time window on the attempts.
Timeout Sets the amount of time (in minutes) that the user account is locked after failing to log in. After the timeout is over, the user can attempt to log in again.
Unsuccessful Login Window Sets a time window (in minutes) for the log in attempts. The system checks the number of failed attempts within the time window. For example, if the Maximum Allowed Attempts is '3', the Timeout is '60', and the Unsuccessful Login Window is '10':
  • If a user makes two unsuccessful login attempts and then waits 10 minutes, the account is not locked and the time window and number of attempts are reset to zero. The user can again make three attempts to log in.
  • If a user makes three unsuccessful login attempts within 10 minutes, the account is locked. The user must wait 60 minutes and can again make three attempts to login.