Minimize failed login attempts for high assurance sessions
Decrease the likelihood of a brute force attack by minimizing failed login attempts for high assurance sessions.
Use the glide.zta.high_assurance.session.max.login.failed_attempts system property to limit the number of failed authentication attempts allowed before users are logged out when re-authenticating through Continuous Authentication.
Set the value of this system property to a low value (such as 5) to decrease the likelihood of a brute force attack.
More information
| Attribute | Description |
|---|---|
| Technical configuration name | glide.zta.high_assurance.session.max.login.failed_attempts |
| Plugin applicability | Zero Trust - Continuous Authentication (com.snc.zero_trust_continuous_authentication) |
| Security risk | A high number of allowed authentication attempts increases the likelihood of a brute force attack. |
| Common Vulnerability Scoring System (CVSS) score | 3.3 |
| Common Vulnerability Scoring System (CVSS) rating | Low |
| Functional impact | Users are logged out of their sessions after the number of authentication failures selected in the property. |
| Dependencies and prerequisites | None |
| Data type | Integer |
| Base system value | 5 |
| Fallback value | 5 |
| Recommended value | 5 |
To learn more about adding or creating a system property, see Add a system property.