Information
Use this setting to restrict the number of failed logon attempts a user can make.
Rationale:
There is a high risk that mobile devices will be lost or stolen. Enforcing this setting reduces the likelihood that an unauthorized user can guess the password of a device to access data stored on it.
Solution
To implement the recommended state, execute the following PowerShell cmdlet:
Set-MobileDeviceMailboxPolicy -Identity Default -MaxPasswordFailedAttempts 10