Set Maximum Login Attempts

To protect against brute force attacks on user accounts, you can configure HPE IDOL Server to lock user accounts when there are too many incorrect login attempts within a specified time period.

To set a maximum number of login attempts

  1. Open the HPE IDOL Server configuration file in a text editor.

  2. Find the [User] section, or create one if it does not exist.

  3. Set the LoginMaxAttempts parameter to the maximum number of incorrect login attempts to allow in the time period.

  4. Set the LoginExpiryTime parameter to the time (in seconds) before the current number of login attempts resets. HPE IDOL Server locks the user account if there are too many incorrect login attempts within this time period. For example:

    LoginMaxAttempts=3
    LoginExpiryTime=60

    In this example, the user account locks if there are three incorrect login attempts within 60 seconds of each other.

  5. To automatically unlock users, set the LockRemovalDuration parameter to the length of time that the user remains locked. For example:

    LockRemovalDuration=24hours

    Set LockRemovalDuration to -1 to disable it.

  6. Save and close the configuration file. Restart HPE IDOL Server for your changes to take effect.

  7. Notify your users of your password and PIN policies.

Users must contact a system administrator to unlock their accounts, unless you configure the LockRemovalDuration parameter.


_HP_HTML5_bannerTitle.htm