So I have a question I cannot find if there is an answer to.
We have a Fortigate 201E that contains a dedicated management interface. We do NOT have that interface connected normally to any network. We use it as a "Something has gone wrong, and I need direct access to the firewall"...
The problem we had (literally this morning), was that we locked ourselves out, because most of our accounts are LDAP based, and suddenly the firewall couldn't connect to the internal network. We have a local admin account, but for some reason, we had 5 different passwords saved for that account. This locked us out, and delayed us getting services back online because of this simple problem.
I would like to have the max login attempts either disabled, or at least changed for that single interface only. Can this be done?