Fortinet Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
MICAH_TENGWA
New Contributor

login limit for failed authentication forticlient vpn

Hello there, gentlemen.
Please assist me with the following information.
How can we limit the number of unsuccessful authentication attempts for our VPN users to say two until after 30 minutes on FortiOS 5.4?

MT
3 REPLIES 3
Debbie_FTNT
Staff
Staff

I'm not entirely certain if those commands existed in 5.4, but you can try:

 

(#config vdom)

(#edit <vdom>)

#config vpn ssl settings

#set login-attempt-limit <number>

#set login-block-time <time a user is blocked from trying again in seconds>

#end

+++ Divide by Cucumber Error. Please Reinstall Universe and Reboot +++
MICAH_TENGWA

Hi, please am talking about IPsec

MT
Debbie_FTNT

In that case, probably these settings:

#config user setting

#set auth-lockout-threshold <number of attempts>

#set auth-lockout-duration <in seconds>

#end

 

However, these settings will apply to ALL user authentication, not just IPSec VPN; there are no IPSec VPN specific user login settings that I could find.

+++ Divide by Cucumber Error. Please Reinstall Universe and Reboot +++