How to set up Brute Force Detection feature

This feature enables ZTrust to detect brute force attacks, where attackers use trial and error techniques to discover correct credentials. ZTrust can identify and prevent such unauthorized access attempts. In case of detection, customized notification emails are sent to the IT Security Team or System Administrator whenever multiple failed attempts originate from a single IP Address.

Steps to be followed to set up Brute Force Detection feature -

1. Go to Realm Settings.

1. Click on Security Defenses.

1. Click on Brute Force Detection.

Field Name	Mandatory (Yes/No)	Field Type	Description
Brute Force Mode	Yes	dropdown	Select the most preferable option from the dropdown according to your needs.

1. Provide the details for the following according to your organization standards -

Field Name	Mandatory (Yes/No)	Field Type	Description
Max Login Failures	Yes	Text	Maximum number of login attempts permitted for a user if incorrect credentials are provided.
Wait Increment	Yes	Text	Duration after which the account will be unlocked to enable the user to log in again after the maximum number of failed attempts
Max wait	Yes	Text	Time after which it allows logging in again in case of a quick login failure.
Failure Reset Time	Yes	Text	Duration after which the count of failed login attempts will be reset to zero
Quick Login Check Milliseconds	Yes	Text	Recommended to verify if the login attempts are not from a bot. The time elapsed between the first failed login and the second failed login.
Minimum Quick Login Wait	Yes	Text	It represents the waiting period or the duration the user must wait after a rapid login failure.

All the above mentioned details are customizable and can be adjusted to align with the organization's standards.

1. Click on Save.

The Brute Force Detection feature will now be enabled.