Java Policy Agents 2023.3

Login Attempt Limit

When the value of this property is greater than zero, it defines the maximum number of failed login attempts allowed during a browser session. After this number, the agent blocks requests from the user.

Specify a value greater than zero. For example, if the property is set to 3, the agent blocks the fourth login request.

Use this property to mitigate the risk of brute force attacks.

Property name

org.forgerock.agents.login.attempt.limit.count

Aliases

org.forgerock.agents.login.attempt.limit.count
  Introduced in Java Agent 5.6

com.sun.identity.agents.config.login.attempt.limit
  Introduced in Java Agent 5.0
  Recognized from AM 6

Type

Integer

Default

0

Bootstrap property

No

Required property

No

Restart required

No

Local configuration file

AgentConfig.properties

AM console

Tab: Global

Title: Login Attempt Limit

Copyright © 2010-2023 ForgeRock, all rights reserved.