The vCenter Server must set the interval for counting failed login attempts to at least 15 minutes.
An XCCDF Rule
Description
By limiting the number of failed login attempts, the risk of unauthorized system access via user password guessing, otherwise known as brute forcing, is reduced. Limits are imposed by locking the account.
- ID
- SV-258924r961368_rule
- Version
- VCSA-80-000145
- Severity
- Medium
- References
- Updated
Remediation Templates
A Manual Procedure
From the vSphere Client, go to Administration >> Single Sign On >> Configuration >> Local Accounts >> Lockout Policy.
Click "Edit".
Set the "Time interval between failures" to "900" and click "Save".