Password Lockout Examples

The following examples illustrate how the Cloud Authentication Service password lockout works.

In all examples, the administrators has configured 4 unsuccessful password attempts before lockout and a lockout duration of 30 minutes.

Four Unsuccessful Password Attempts

Time in Minutes

User Activity

00:00

User1 has first unsuccessful password attempt.

00:01

User1 has second unsuccessful password attempt.

00:02

User1 has third unsuccessful password attempt.

00:03

User1 has fourth unsuccessful password attempt.

The Cloud Authentication Service locks the password method for this user for 30 minutes.

00:25

User1 submits a password attempt (either with correct or incorrect password).

The Cloud Authentication Service ignores the request because the method is locked.

00:33

The Cloud Authentication Service unlocks the password method for the user and resets the number of unsuccessful password attempts.

00:56

User1 completes password authentication.

Two Unsuccessful Password Attempts and One Successful Attempt

Time in Minutes

User Activity

00:00

User1 has first unsuccessful password attempt.

00:01

User1 has second unsuccessful password attempt.

00:02

User1 completes password authentication.

The Cloud Authentication Service resets the number of unsuccessful password attempts.

Cloud Authentication Service Resets Unsuccessful Attempts

Time in Minutes

User Activity

00:00

User1 has first unsuccessful password attempt.

00:15

User1 has second unsuccessful password attempt.

00:29

User1 has third unsuccessful password attempt.

00:59

The Cloud Authentication Service resets the number of unsuccessful password attempts.

01:00

User1 has first unsuccessful password attempt.

01:02

User1 completes password authentication.