@gcuselloSplunk can lock you out if you repeatedly misauthenticate. From authentication.conf.spec: lockoutUsers = <boolean>
* Specifies whether locking out users is enabled.
* This setting is optio...
See more...
@gcuselloSplunk can lock you out if you repeatedly misauthenticate. From authentication.conf.spec: lockoutUsers = <boolean>
* Specifies whether locking out users is enabled.
* This setting is optional.
* If you enable this setting on members of a search head cluster, user lockout
state applies only per SHC member, not to the entire cluster.
* Default: true (users are locked out on incorrect logins)
lockoutMins = <positive integer>
* The number of minutes that a user is locked out after entering an incorrect
password more than 'lockoutAttempts' times in 'lockoutThresholdMins' minutes.
* Any value less than 1 is ignored.
* Minimum value: 1
* Maximum value: 1440
* This setting is optional.
* If you enable this setting on members of a search head cluster, user lockout
state applies only per SHC member, not to the entire cluster.
* Default: 30
lockoutAttempts = <positive integer>
* The number of unsuccessful login attempts that can occur before a user is locked out.
* The unsuccessful login attempts must occur within 'lockoutThresholdMins' minutes.
* Any value less than 1 is ignored.
* Minimum value: 1
* Maximum value: 64
* This setting is optional.
* If you enable this setting on members of a search head cluster, user lockout
state applies only per SHC member, not to the entire cluster.
* Default: 5
lockoutThresholdMins = <positive integer>
* Specifies the number of minutes that must pass from the time of the first failed
login before the failed login attempt counter resets.
* Any value less than 1 is ignored.
* Minimum value: 1
* Maximum value: 120
* This setting is optional.
* If you enable this setting on members of a search head cluster, user lockout
state applies only per SHC member, not to the entire cluster.
* Default: 5 The same can be set in GUI @SiddharthnegiThese above are global settings so they are not user-specific. If your user is getting locked out they must be providing wrong authentication data repeatedly.