cancel
Showing results for 
Search instead for 
Did you mean: 
Create a Post

Remote VPN User account lock after failed authentication threshold

Jump to solution

Hello everyone.

Is it possible to lock remote access user accounts after they fail to authenticate a number of times?

In the particular scenario I'm running, the users are local to the user center and not located on a centralized remote directory.

I'm surely missing something because I searched both R77.30 and R80.10 consoles to no avail and also searched KB and Check Mates but wasn't lucky.

Many thanks in advance.

1 Solution

Accepted Solutions
Admin
Admin

Re: Remote VPN User account lock after failed authentication threshold

Jump to solution

This is not supported using Internal Password.

However, you can use OS Password and create the users in Gaia as described here:

Supporting more Complex Passwords without using a RADIUS/TACACS+ Server

Then you can leverage the feature in Gaia OS to lock out after failed login attempts.

3 Replies
Admin
Admin

Re: Remote VPN User account lock after failed authentication threshold

Jump to solution

This is not supported using Internal Password.

However, you can use OS Password and create the users in Gaia as described here:

Supporting more Complex Passwords without using a RADIUS/TACACS+ Server

Then you can leverage the feature in Gaia OS to lock out after failed login attempts.

Re: Remote VPN User account lock after failed authentication threshold

Jump to solution

Hello  Dameon,

First of all let me say that I'm honored for a legend like you to be replying to me Smiley Happy Been following your work and information share for years.

Thank you very much for your answer. It definitely clears any doubt regarding what I was searching. I will try to convince my customer to move all local authentication to a central repository like an MSAD for example to achieve the goal they're looking for.

Best regards from Portugal,

Pedro Madeira

0 Kudos
Admin
Admin

Re: Remote VPN User account lock after failed authentication threshold

Jump to solution

Smiley Happy

It's always better to use a central authentication store where possible.

0 Kudos