"Too many login failures." by administrator - how to reset lockout?
if an administrator has entered "Too many login failures. Please try again in a few minutes..." lockout state, using CLI command, how can I see which administrator is locked-out and what's the CLI command to unlock (before expiry)?
Ideally, if ADMINISTRATOR can't authenticate, lockout is indefinite. Unlocked only by another administrator.
Not correct by any means, also when your address is locked out you can use another address and the same admin account to login in. If what you stated was correct, a hacker could conduct a denial of service attack and lock out any "admin" account.
Btw, I never use the default "admin" for the system in a fortigate.
Perhaps you scrutinise every alertemail or log messages - you’ll notice consistently wrong credentials indicative of brute force. I don’t/can’t, so, to have this indelibly flagged I want indefinite lockout, requiring human intervention (not just to unlock but to determine context).
(Our admin trustedhost addresses include a variety of address spaces, including is a static VPN address.)
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.