This website uses cookies. By clicking OK, you consent to the use of cookies. Click Here to learn more about how we use cookies.
OK
ABOUT CHECKMATES & FAQ
Create a Post
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Help
Louis_Poulin
Collaborator
‎2018-02-07 06:08 AM

How do you prevent user accounts from being locked when using Remote Access VPN?

When you put in place remote access (VPN) and you validate the username/password against an internal directory (like Active Directory), how do you prevent a malicious user from locking user accounts from the outside?

If a malicious user tries different passwords for a username either on the SSL VPN webpage or by using the endpoint VPN client, eventually the account will be locked/disabled in the internal directory.

We can then imagine someone doing a DoS attack for all the users in the organization.

Thanks!

P.S. I'm interested in a solution for a setup running R80.10

Reply
3 Replies
G_W_Albrecht
Champion
Champion
‎2018-02-09 05:03 AM

You have experienced that live, did test the issue in lab or is this just a theoretical question ?

0 Kudos
Reply
Louis_Poulin
Collaborator
‎2018-02-09 05:13 AM
In response to G_W_Albrecht

All of the above.

Why do you ask?

0 Kudos
Reply
rajendra_bandil
Explorer
‎2018-02-18 09:32 AM

Hi,

        Could you please provide solution of  sk92383 to study.  I don't have advanced access.

Remote Access clients can connect to VPN Gateway only once 

Regards

Rajendra

0 Kudos
Reply