Lockout Policies Overview
You can use lockout policies to lockout a user for a length of time or permanently.
-
Number of signon attempts to allow before a user is locked out.
-
Whether the lockout is permanent or for a specified time period.
-
Whether the policy applies to all instances of the adapter (protocol level) or only to adapter instances that you choose (instance level).
-
Which protocol the policy applies to: FTP or SFTP.
-
If the lockout period is permanent, the user is locked out until the lock is cleared by an application administrator.
- For protocol level policies, all instances of the protocol (SFTP/FTP) are affected.
- There can be only one policy defined at the protocol level at any given time.
- Instance level policies take precedence over protocol level policies.
Define a Lockout Policy
To define a lockout policy:
- From the Administration Menu, select Deployment > Adapter Utilities > Policy Configuration.
- Next to New Policy, click Go!
- Select Lockout Policy and click Next.
- Enter the Policy Name.
- Enter Description.
- Select the Maximum number of Invalid Login Attempts allowed.
- Select the Lockout Type: Permanent or Time Based.
- If you selected, Time Based, enter the lockout out Time Period in Mins (minutes).
- Select the Protocol: FTP or SFTP.
- Select the Level at which this policy is applied: Protocol or Instance.
- Click Next.
- Review the policy configuration.
- Click Finish to create the policy.
Clear a Lock set by a Lockout Policy
The Lockout Policy Manager enables an Policy Lock Manager to clear a lock for a user. Only users who have permission to clear locks, will have the Policy Lock Manager displayed in the Admin Console. After the lock is cleared, the user regains access to the instances.
To clear a lock:
- From the Administration Menu, select Deployment > Adapter Utilities > Policy Lock Manager.
-
Search for the lock by User Name, Lockout Type, Start Date, or End Date. After you enter the search criteria, click Go! The lockout information is displayed.
- Clear the lock checkbox.
- Click Finish.
Disable a Lockout Policy
To disable a lockout policy:
- From the Administration Menu, select Deployment > Adapter Utilities > Policy Configuration.
-
In the List panel, in By Policy Type, select Lockout Policy and click Go! A list of the lockout policies are displayed.
- Clear the Enabled checkbox for the policy you want to disable. A warning message is displayed to letyou know that any locked users are now unlocked. You need to click OK to disable the policy. If you select Cancel, the lockout policy remains.
Enable a Lockout Policy
To enable a lockout policy that has been disabled:
- From the Administration Menu, select Deployment > Adapter Utilities > Policy Configuration.
-
In the List panel, in By Policy Type, select Lockout Policy and click Go! A list of the lockout policies are displayed.
- Check Enabled for the policy you want to enable.
- Click Next.
Edit a Lockout Policy
To edit a lockout policy:
- From the Administration Menu, select Deployment > Adapter Utilities > Policy Configuration.
-
In the List panel, in By Policy Type, select Lockout Policy and click Go! A list of the lockout policies are displayed.
- Select Edit for the policy you want to enable.
- Review and update as required.
- Review the updates.
- Click Finish to update the policy.
Delete a Lockout Policy
To delete a lockout policy:
- From the Administration Menu, select Deployment > Adapter Utilities > Policy Configuration.
-
In the List panel, in By Policy Type, select Lockout Policy and click Go! A list of the lockout policies are displayed.
- If the policy you want to delete is enabled, clear the Enabled checkbox.
-
Click Next. A warning message is displayed to let you know that any locked users are now unlocked. You need to click OK to confirm the disable.
- Select Delete for the policy you want to delete.
- Review and confirm that you want to delete the policy, as the action can not be reversed.
- Click Delete.