Enabling account lockout

Starting in Maximo® Application Suite 9.0, account lockout is available. For local authentication, you can enable account lockout to define the conditions that prevent users from logging in after consecutive unsuccessful login attempts.

1. In Suite administration, from the side navigation menu, click Users and then click the Authentication tab.
2. In the Identity providers section, for the local identity provider, click More actions > Configure password.
3. In the Account lockout section, specify the number of consecutive password attempts before the users account is locked.
4. Choose whether to lock the account by duration or until an administrator unlocks the account.
5. Save your changes.

Results

When the lockout conditions are met, the account of the user is locked and a message is shown on the login page. If SMTP is configured, an email is also sent to the user to inform them that their account is locked. The user must either wait a predetermined amount of time before they can log in again or contact a system administrator to unlock the account.

What to do next

You can specify the length of time that elapses after a failed password attempt before the number of consecutive password attempts resets by updating the password policy setting in Red Hat® OpenShift® Container Platform. The default is that the number of consecutive password attempts resets only when the user logs in or after the users account is unlocked.