We had a set up with our Azure AD which we use our on Prem ADFS and on Prem Secure ID. We have discovered an issue where a malicious agent could lock out our users via multiple incorrect log ins.
Is there a way to stop this sort of DDOS attack using this setup? If not stop, limit our exposure.
Hi Gerry,
Can I ask what version of ADFS you are running?
I ask this because Microsoft has introduced some capabilities to help with this in ADFS 2019
1. Extranet "smart lockout"
2. Second factor before password
You can read more here.
Additional authentication methods in AD FS 2019 | Microsoft Docs