General discussion

Locked

Account lockouts in Microsoft windows environmnent

By shyams ·
what is the recommended number of password attempts to be allowed before an account is locked out ? Is that 3 / 5 / 7 /10 ? What is a good number considering the tradeoff between too many support calls versus ensuring security ? What are the other valid reasons for Account lockouts apart from user forgetfulness ? Does that include any inherent flaws in the Windows architecture that caches passwords in mapped drives, applications storing password, active sync issues and any such matters. Is there a comprehensive study on what are the root causes and recommendations to eliminate them.

This conversation is currently closed to new comments.

3 total posts (Page 1 of 1)  
| Thread display: Collapse - | Expand +

All Comments

Collapse -

Wow

by PurpleSkys In reply to Account lockouts in Micro ...

Does that ever sound like homework...but. I'll take a smack if I'm wrong.

Collapse -

I don't think it's homework,

by wizard57m-cnet Moderator In reply to Wow

but it is quite a lot of information requested. A quick mouse-over on the
member show they've been around 10 years or so.
Anyhow, the most common number of failed attempts I've seen is 3, not
sure why, guess it just sounds good to most SysAdmins.
As to valid reasons for using lockouts...there really is ONE primary reason,
that is to help prevent "brute force" break-ins. Way back in the day, a lot
of script kiddies would try to brute force Yahoo, Hotmail, AOL mail etc
accounts...the actual owner of the account would find their account locked
and have to have an unlock sent to an alternate email address (yes, I've
been there and done that too, hehe) I'm not aware of any flaws in any
particular OS that lockouts would prevent, and in regards to studies of
root causes/elimination, you might uncover something using your favorite
search engine, like Bing, Google, Ask etc.

Collapse -

my bad then

by PurpleSkys In reply to I don't think it's homewo ...

i'll take a knock in the noggin" when i'm wrong...my apologies to the user.

Back to Software Forum
3 total posts (Page 1 of 1)  

Related Discussions

Related Forums