PHTN-40-000004 - The Photon operating system must enforce the limit of three consecutive invalid logon attempts by a user during a 15-minute time period.

Information

By limiting the number of failed logon attempts, the risk of unauthorized system access via user password guessing, otherwise known as brute-force attacks, is reduced. Limits are imposed by locking the account.

Solution

Navigate to and open:

/etc/security/faillock.conf

Add or update the following lines:

deny = 3
fail_interval = 900

Note: On vCenter appliances, the equivalent file must be edited under "/etc/applmgmt/appliance", if one exists, for the changes to persist after a reboot.

Item Details

Audit Name: DISA VMware vSphere 8.0 vCenter Appliance Photon OS 4.0 STIG v2r1

Category: ACCESS CONTROL

Plugin: Unix

Control ID: f96ff6a3c4c09a78cdeedfd80398e4f17f5196c3b7085a62d84919dc65ba08ec

Detections

Analytics

PHTN-40-000004 - The Photon operating system must enforce the limit of three consecutive invalid logon attempts by a user during a 15-minute time period.

Information

Solution

See Also

Item Details