How to set up Brute Force Detection feature

This feature enables ZTrust to detect brute force attacks, where attackers use trial and error techniques to discover correct credentials. ZTrust can identify and prevent such unauthorized access attempts. In case of detection, customized notification emails are sent to the IT Security Team or System Administrator whenever multiple failed attempts originate from a single IP Address.

Steps to be followed to set up Brute Force Detection feature -

1. Go to Realm Settings.

1. Click on Security Defenses.

1. Click on Brute Force Detection.

2. Turn the toggle button to ON.

Field Name	Mandatory (Yes/No)	Field Type	Description
Enabled	Yes	Toggle	Enable/Disable the Brute Force Detection feature as required

1. Provide the details for the following according to your organization standards -

Field Name	Mandatory (Yes/No)	Field Type	Description
Permanent Lockout	No	Toggle	If enabled, it permanently locks the user after reaching the maximum number of login attempts until the admin allows the user to attempt login again.
Max Login Failures	Yes	Text	Maximum number of login attempts permitted for a user if incorrect credentials are provided.
Wait Increment	Yes	Text	Duration after which the account will be unlocked to enable the user to log in again after the maximum number of failed attempts
Quick Login Check Milliseconds	Yes	Text	Recommended to verify if the login attempts are not from a bot. The time elapsed between the first failed login and the second failed login.
Minimum Quick Login Wait	Yes	Text	It represents the waiting period or the duration the user must wait after a rapid login failure.
Max wait	Yes	Text	Time after which it allows logging in again in case of a quick login failure.
Failure Reset Time	Yes	Text	Duration after which the count of failed login attempts will be reset to zero

All the above mentioned details are customizable and can be adjusted to align with the organization's standards.

1. Click on Save.

The Brute Force Detection feature will now be enabled.