InformationThe account lockout threshold specifies the amount of times a user can enter an incorrect password before a lockout will occur.
Ensure that a lockout threshold is part of the password policy on the computer
The account lockout feature mitigates brute-force password attacks on the system.
The number of incorrect log on attempts should be reasonably small to minimize the possibility of a successful password attack, while allowing for honest errors made during a normal user log on.
SolutionRun the following command to set the maximum number of failed login attempts to less than or equal to 5:
$ sudo pwpolicy -a <administratoraccount> -setaccountpolicies 'maxFailedLoginAttempts=<value<=5>'
$ sudo pwpolicy -a firstuser -setglobalpolicy 'maxFailedLoginAttempts=5'