Is there a way to report on users that have been locked out due to too many failed login attempts?

Go to solution
Russ Hancock
Tera Expert

‎01-18-2017 12:52 PM

I am trying to determine if there is a way to either report on (or trigger an Email notification for) users that have failed to log in a set number of times, and are thus locked out.

0 Helpfuls
  • 1,319 Views
1 ACCEPTED SOLUTION

Go to solution
darius_koohmare
ServiceNow Employee
ServiceNow Employee

‎01-18-2017 12:57 PM

Sure thing Russell. Create an email notification on the User table whenever 'locked out' 'changes to' 'true'. You can email the users manager, the users email on their account, etc.



There are system properties that control the # of failed attempts for lockout, found here: Specify lockout for failed login attempts


View solution in original post

6 REPLIES 6

Go to solution
darius_koohmare
ServiceNow Employee
ServiceNow Employee
In response to Russ Hancock

‎01-19-2017 11:22 AM

Ahh got it.


The only similar concept top of mind would be enabling auditing on the user table and then searching sys_history_set for updates to the 'locked out' field.


Go to solution
Russ Hancock
Tera Expert
In response to darius_koohmare

‎01-19-2017 12:51 PM

That sounds like another good potential solution, thanks Darius!


0 Helpfuls