3 Replies Latest reply: May 25, 2012 3:02 AM by jaikiran pai RSS

    User lock out if there was too many failed attempts

    Lukasz Szymik Newbie

      I am implementing Java EE application on JBoss 7.1.1 and I am using two security domains: DatabaseServerLoginModule and LdapLoginModule.

      Is there any way to apply lock out policy to lock out my accont after too many failed attempts.

       

      I found something like LockOutRealm for Web server but I need something which will be working with DatabaseServerLoginModule as well. Generally I will need to configure how many bad login (wrong password) will lock user accont and I need to have unlock functionality: after timeout (5 minues) or manualy by administrator.

       

      Thanks in advance for any suggestion or hint.

       

      Best regerds

      Ɓukasz