SYMP-NM-000050 - Symantec ProxySG must be configured to enforce the limit of three consecutive invalid logon attempts by a user during a 15-minute time period - Reset interval


By limiting the number of failed logon attempts, the risk of unauthorized system access via user password guessing, otherwise known as brute-forcing, is reduced.


The lockout policy may be configured for both SSH and Web Management Console sessions.

1. SSH into the ProxySG console, type 'enable', press 'Enter'.
2. Enter the appropriate password, type 'config', press 'Enter'.
3. Type 'security local-user-list edit local_user_database', press 'Enter'.
4. Type 'lockout-duration 900', type 'max-failed-attempts 3', press 'Enter'.

See Also

Item Details


References: 800-53|AC-7a., CAT|II, CCI|CCI-000044, Rule-ID|SV-104491r1_rule, STIG-ID|SYMP-NM-000050, Vuln-ID|V-94661

Plugin: BlueCoat

Control ID: 770de36948350d4a02e2df4642a85db20a9536fb6ae1c2c96ee7b56e89d4225f