NF1.0 User Locking

From iDempiere en
Revision as of 17:36, 8 July 2013 by Richardmh (talk | contribs)

Feature: User Locking

Goal: Security

Sponsor: Trek Global

Description:

This new feature allows implement user locking on some events:

  • Maximum account locking in minutes
  • Maximum inactive period in days
  • Maximum number of login attempts
  • Maximum password age in days

These parameters are configured in "System Configurator" window

  • USER_LOCKING_MAX_ACCOUNT_LOCK_MINUTES
  • USER_LOCKING_MAX_INACTIVE_PERIOD_DAY
  • USER_LOCKING_MAX_LOGIN_ATTEMPT
  • USER_LOCKING_MAX_PASSWORD_AGE_DAY

How to configure the system to lock the user account at the third failed attempt login:

1. In "System Configuration" window, find record "USER_LOCKING_MAX_LOGIN_ATTEMPT".

2. Set value for field "Configured Value".

Screenshot17.png 

* at the third failed attempt, the user account will be locked

3. Log out.

Login with another user, use password or user incorrect.

Screenshot13.png

Screenshot14.png

Screenshot15.png

Trtry to log in for the fourth time and the system will ask you to contact your system administrator to unlock user's account.

Screenshot16.png

Log in with "GardenAdmin". Use the "Reset Locked Account" process to unlock the user account.

Screenshot18.png

Screenshot19.png 

* Now the user will be able to log in.

Technical Info: IDEMPIERE-373

Retrieved from "https://wiki.idempiere.org/w-en/index.php?title=NF1.0_User_Locking&oldid=3791"
Cookies help us deliver our services. By using our services, you agree to our use of cookies.
GNU-Lizenz für freie Dokumentation 1.3 oder höher
Powered by MediaWiki