You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
{{ message }}
This repository has been archived by the owner on Dec 14, 2017. It is now read-only.
Brock Allen edited this page Oct 22, 2013
·
5 revisions
MembershipReboot implements logic to detect password brute force attacks. If this is detected, then the account will be locked such for a duration that that user will not allowed to be login.
You can configure the number of failed password attempts before an account is locked out. This is done via the SecuritySettings.AccountLockoutFailedLoginAttempts property, or in the config file:
You can configure the duration the account is locked out after the failed password threshold is met. This is done as a TimeSpan on the SecuritySettings.AccountLockoutDuration property, or in the config file: