Configuring the Number of Logon Attempts

You can increase the security of your projects by entering a logon failure setting and duration. One cause of logon failure is hackers trying to figure out passwords for users. In such cases, you should consider changing the IP address of the system to make it more difficult for attackers to locate the server configuration and repeat their efforts. You may also want to change the user names of all users in the system.

You can configure the server configuration to notify members of the security administrators group by email about logon failures.

Note: You can perform this operation only on a running server configuration.
  1. Click Start > Programs > Micro Focus > StarTeam Server <version> > StarTeam Server .
    The Server Administration Tool opens.
  2. Select a server configuration from the list of servers. If you have not yet logged on, you will be asked to do so.
  3. Select Tools > Accounts > System Policy . The System Policy dialog box opens.
  4. Select the Logon Failures tab.
  5. Select one of the following Logon failures:
    Ignore
    This selection disables the logon failures option.
    Lockout account after ___ failures
    Type the number of logon failures you want to allow.
  6. Select one of the following Lockout duration options:
    Forever
    With this option selected, only an administrator can reinstate the user.
    Keep locked for ___ minutes
    Type the number of minutes for the duration of the lockout. The user will be able to log on again after the designated timeout period.
  7. To notify members of the security administrators group that users attempted to log on unsuccessfully, check By e-mail.
  8. Click OK.
Parent topic: Setting Security Options