How to set up Brute Force Detection feature
This feature enables ZTrust to detect brute force attacks, where attackers use trial and error techniques to discover correct credentials. ZTrust can identify and prevent such unauthorized access attempts. In case of detection, customized notification emails are sent to the IT Security Team or System Administrator whenever multiple failed attempts originate from a single IP Address.
Steps to be followed to set up Brute Force Detection feature -
Go to Realm Settings.
Click on Security Defenses.
Click on Brute Force Detection.
Turn the toggle button to ON.
Enabled
Yes
Toggle
Enable/Disable the Brute Force Detection feature as required
Provide the details for the following according to your organization standards -
Permanent Lockout
No
Toggle
If enabled, it permanently locks the user after reaching the maximum number of login attempts until the admin allows the user to attempt login again.
Max Login Failures
Yes
Text
Maximum number of login attempts permitted for a user if incorrect credentials are provided.
Wait Increment
Yes
Text
Duration after which the account will be unlocked to enable the user to log in again after the maximum number of failed attempts
Quick Login Check Milliseconds
Yes
Text
Recommended to verify if the login attempts are not from a bot. The time elapsed between the first failed login and the second failed login.
Minimum Quick Login Wait
Yes
Text
It represents the waiting period or the duration the user must wait after a rapid login failure.
Max wait
Yes
Text
Time after which it allows logging in again in case of a quick login failure.
Failure Reset Time
Yes
Text
Duration after which the count of failed login attempts will be reset to zero
All the above mentioned details are customizable and can be adjusted to align with the organization's standards.
Click on Save.
The Brute Force Detection feature will now be enabled.
Last updated