AuthTriesBeforeLockout
As a security measure against brute-force attacks, by default the user account is locked after 30 failed login attempts to the system.
Brute-force attacks, also known as exhaustive key search, systematically check all possible key or password combinations until the correct one is found. To protect unauthorized system access through this type of attacks, user login to Content Manager is locked after a number of consecutive failed attempts.
By default, the value of the registry key AuthTriesBeforeLockout is set to 30. A value of 0 disables the locking feature.
All Content Manager components use this registry value at login time. With the default value, after 30 unsuccessful login attempts a user account is locked. Only a system administrator can reset the password of a locked user account.
| Registry key | Default value |
|---|---|
HKLM\SOFTWARE\Wow6432Node\Trisoft\TriDK\TriDKApp\InfoShareAuthor\AuthTriesBeforeLockout | 30 |