|
|
|
|
|
To access these settings: Select SYSTEM > Settings. On the IP/User Lockout Policy row, click Edit.
The IP/User Lockout policy specifies the rules for when IP addresses and users are locked out after repeated failed attempts to log on. You can also manage the list of Trusted IP Addresses that are exempt from the policy from here.
You can customize a lockout policy by setting:
When planning lockout policies, consider the following:
Field |
Description |
IP Lockout |
Enabled/Disabled: Use the IP Lockout button to switch the IP lockout policy on (Enabled) or off (Disabled). By default, IP Lockout is disabled. |
Lockout IPs after |
Specifies the number of access attempts within a specified time, after which logins from the originating IP address are locked. |
Lockouts expiration |
Options Never: Select Never if the lockout period does not expire. The Admin must reactivate logins from the IP address. Expire after: Specify the amount of time that must pass after the lockout takes effect before logins from the IP address can resume. |
User Lockout |
Enabled/Disabled: Use the User Lockout button to switch the User lockout policy on (Enabled) or off (Disabled). By default, User Lockout is disabled. |
Lockout Users after |
Specifies the number of access attempts within a specified time, after which a user account is locked out. |
Lockouts expiration |
Options Never: Select Never if the lockout period does not expire. The Admin must reactivate logins from the user. Expire after: Specify the amount of time that must pass after the lockout takes effect before the user can attempt to logion again. |
Trusted IP Address |
Enter the IP address or addresses that are exempt from the lockout policies. Most MOVEit Automation instances leave this list empty to avoid security issues with IP addresses. Note: If the Web Admin and MOVEit Automation are on separate server, you must add the IP address of the Web Admin server to the list of trusted IP addresses. |