User Authentication and lockouts


#1

Is it possible within ManageIQ to lock or disable logins after multiple failures and any way to create an alert from a failed login. Currently I am just using rsyslog and audit.log but would like a more “native” way.


#2

@dclarizio can you review this question from @IMD and forward to a SME if necessary.


#3

@IMD This sounds like a good idea. We don’t have an enhancement planned in this area, but would welcome this change. It should be configurable globally as to how many failures would lock the form or generate the alert. One question would be how long do we lock the browser session out before allowing further attempts?