Authentication events
The advanced security feature captures additional events related to failed authentications. Failed authentication data is unrelated to any current sessions. These events are captured in the $hist_failed_authentication table.
Event | FAILURETYPE |
---|---|
Failed authentication due to bad username/password | 1 |
Failed authentication due to concurrency | 2 |
Failed authentication due to user access time limits | 3 |
User account disabled after too many failed password attempts | 4 |
The user name captured might or might not be the name of a valid user. The data captured is also security-sensitive, so the failed authentication data is always captured with the OMNI:OMNI:OMNI security label, requiring the highest level of access to view this data.