Lock Period Settings - Overview | Security Policies - Advanced Settings

Lock period settings - Overview

Lock period settings are primarily meant for restricting unauthorized access to an account. By enforcing a timed lock-out when the sign-in attempts get used up by incorrect credentials multiple times, these settings serve as a secure measure against potential hacking.

In an attempt to breach the password, there's a good chance to exhaust the limits configured in the lock period settings, namely the monitoring period, allowed number of invalid sign-ins, and lock period.
Eventually, the account gets locked and will remain so for the entire lock period prescribed. Only after the lock period elapses will the account be unlocked for the user to sign in, with the limits of the lock period settings replenished.

Configuration parameters:

  1. Monitoring period refers to the duration of time for which a user is monitored, so as to keep track of their attempts to sign in to their account and to check the validity of those attempts.
  2. Max number of invalid sign-ins refers to the threshold number of attempts a user can sign in with incorrect credentials.
  3. Lock period is the duration for which the user is restricted to sign in to their account after they run out of attempts.

When the user wants to get unlocked quite before the lock period elapses:

  1. Go to the Users tab in the Admin Panel.
  2. Click the name or the LOCKED label adjacent to the name of the user who you want to unlock.
  3. Click the Unlock button.
  4. The user will now be free to sign in, with the lock period restrictions reset to the account.