You are currently viewing our boards and having a limited access. Feel free to register so you can express your feelings with us. You need to register before you can post in forums. Registration takes only a minute. No validation via mail required in registration.

Join the forum, it's quick and easy

You are currently viewing our boards and having a limited access. Feel free to register so you can express your feelings with us. You need to register before you can post in forums. Registration takes only a minute. No validation via mail required in registration.
Would you like to react to this message? Create an account in a few clicks or log in to continue.

Create an Account Lockout Policy

Go down

Create an Account Lockout Policy Empty Create an Account Lockout Policy

Post by Justin_Romile Sat Jun 04, 2011 11:14 am

In my last article I showed you how you can protect your computer against anonymous user account attacks by turning on account logon auditing so you could see when someone attempts to remotely logon to your account. Now I am going to help your increase your level of protection with the Account Lockout Policy.

Creating an Account Lockout Policy will protect your account by limiting the number of time a remote application or attacker can try to guess your password. This works by automatically locking out your account after a designated number of incorrect passwords were entered. Your account will remain locked out for a designated period of time before it is automatically unlocked and it can be logged into again. This provides a valuable addition to your account security because it can render brute force password attacks useless. If you have your lockout threshold set to 4 bad attempts and the lockout duration to 15 minutes, an attacker can try to guess your password a maximum of 16 times per hour.

Now that you know how valuable an Account Lockout Policy is, let’s get it setup on your computer:

Click on the Start Button and key in Secpol.msc and hit Enter.
Navigate through Account Policies and Account Lockout Policy.
Right click on Account lockout threshold and select Properties.
Enter in the value you want to use and hit OK to save. I like to use 4 here.
Windows will set the default values for the lockout duration and Reset account lockout counter values. If you want to change these values from the defaults (30 minutes), right click on them and select Properties. After making your changes hit OK to save and exit.

Justin_Romile
Justin_Romile

Posts : 219
Join date : 2010-05-11
Age : 29
Location : Antipolo City, Philippines

https://viostech.forumotion.com

Back to top Go down

Back to top

- Similar topics

 
Permissions in this forum:
You cannot reply to topics in this forum