Adding a lockout policy

  1. In Infor Rich Client, access the Security System Management application, then Security Policies, and then Account Lockout Policy. On the Account Lockout Policy List, select Actions, then Create, and then create a record using the fields described below.

    - or -

    At a Landmark command prompt, type

    secadm accountlockoutpolicy add account-lockout-policy-name [--description description] [--lockoutpolicy lockout-policy] [--lockouttype lockout-type] [--autoresettime auto-reset-time] [--maxfailedlogins max-failed-logins]

    where

    Option Infor Rich Client Field Names Description
    account-lockout-policy-name Account Lockout Policy Specify the account lockout policy name.
    --description description Description

    Optional.

    Add a description of the account lockout policy.
    --lockoutpolicy lockout-policy Lockout Policy

    Disabled

    – or –

    Enabled

    This field indicates whether a lockout policy is enabled.

    Note: 

    This value is case-sensitive.
    --lockouttype lockout-type Lockout Type

    Permanent

    – or –

    Temporary

    This field indicates whether a lockout policy is permanent (locks the user out until the administrator resets the password) or temporary (will allow the user to try again after a specified amount of time).

    Note: 

    This value is case-sensitive.
    --autoresettime auto-reset-time Auto Reset Time (In Seconds)

    Required, when the lock out type is temporary.

    The amount of time in seconds that must pass before another attempt can be made at logging in.

    The default is 600.
    --maxfailedlogins max-failed-logins Max Failed Logins

    The maximum number of failed login attempts that can occur before the user is presented with security questions (if enabled).

    The default is 10.
  2. Save the policy when you are finished selecting options.
  3. Assign the account lockout policy to the appropriate services,