Failed Login Attempts not logged in the user table

Go to solution
Tony Santos1
Tera Contributor

‎10-05-2018 10:50 AM

When a user attempts to log into our Servicenow instance with incorrect credentials the login.failed event gets triggered however the user never gets locked. The user should be locked out after 3 login attempts.

 

In the password reset properties the value "Number of unsuccessful attempts allowed for resetting/changing password" is set to 3. I'm able to login immediately after 4 incorrect login attempts. When I look at the failed login attempts column in the users table I'm not finding any values. Is there something I need to turn on in order to start tracking?

 

 

0 Helpfuls
  • 2,867 Views
1 ACCEPTED SOLUTION

Go to solution
SanjivMeher
Kilo Patron
Kilo Patron
In response to Tony Santos1

‎10-05-2018 11:10 AM

You will have to activate below script action

find_real_file.png

 

Reference: https://docs.servicenow.com/bundle/london-servicenow-platform/page/administer/security/task/t_Lockou...


Please mark this response as correct or helpful if it assisted you with your question.

View solution in original post

Preview file
21 KB
5 REPLIES 5

Go to solution
Erich Dobroth
ServiceNow Employee
ServiceNow Employee
In response to SanjivMeher

‎10-05-2018 11:10 AM

Sanjiv is correct; in almost all cases SSO/LDAP will handle account status.  If you are using local accounts though, you'll want to refer to this doc article:

 

https://docs.servicenow.com/bundle/london-platform-administration/page/administer/security/task/t_Lo...

 

Enable the script action that matches up with the behavior you wish to enforce, making sure you also enable the clear action if you enable either of the bahavior ones.  The properties mentioned there control the unsuccessful count to be used.

 

The password reset property you are referring to is related to reset attempts, not successful/unsuccessful logins.

0 Helpfuls