Detections
Analytics

800-53|AC-7a.

Title

UNSUCCESSFUL LOGON ATTEMPTS

Description

Enforces a limit of [Assignment: organization-defined number] consecutive invalid logon attempts by a user during a [Assignment: organization-defined time period]; and

Reference Item Details

Category: ACCESS CONTROL

Family: ACCESS CONTROL

Baseline Impact: LOW,MODERATE,HIGH

Audit Items

View all Reference Audit Items

NamePluginAudit Name
1.1.1.1 Set 'Account lockout threshold' to '5 invalid logon attempt(s)'WindowsCIS Windows 8 L1 v1.0.0
1.1.1.2 Set 'Account lockout duration' to '15 or more minute(s)'WindowsCIS Windows 8 L1 v1.0.0
1.1.1.3 Set 'Reset account lockout counter after' to '15 minute(s)'WindowsCIS Windows 8 L1 v1.0.0
1.2.1 Ensure 'Account lockout duration' is set to '15 or more minute(s)'WindowsCIS Windows 7 Workstation Level 1 v3.2.0
1.2.1 Ensure 'Account lockout duration' is set to '15 or more minute(s)'WindowsCIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0
1.2.2 Ensure 'Account lockout threshold' is set to '10 or fewer invalid logon attempt(s), but not 0'WindowsCIS Windows 7 Workstation Level 1 v3.2.0
1.2.2 Ensure 'Account lockout threshold' is set to '10 or fewer invalid logon attempt(s), but not 0'WindowsCIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0
1.2.3 Ensure 'Reset account lockout counter after' is set to '15 or more minute(s)'WindowsCIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0
1.2.3 Ensure 'Reset account lockout counter after' is set to '15 or more minute(s)'WindowsCIS Windows 7 Workstation Level 1 v3.2.0
1.2.6 - /etc/security/user - 'loginretries <= 3'UnixCIS AIX 5.3/6.1 L1 v1.1.0
1.4.2 Ensure 'Failed Attempts' and 'Lockout Time' for Authentication Profile are properly configured - Failed AttemptsPalo_AltoCIS Palo Alto Firewall 7 Benchmark L1 v1.0.0
1.4.2 Ensure 'Failed Attempts' and 'Lockout Time' for Authentication Profile are properly configured - Failed AttemptsPalo_AltoCIS Palo Alto Firewall 6 Benchmark L1 v1.0.0
1.21 APPL-14-000060UnixCIS Apple macOS 14 (Sonoma) STIG v1.0.0 CAT II
1.45 WN10-AC-000005WindowsCIS Microsoft Windows 10 STIG v1.0.0 CAT II
1.46 WN10-AC-000010WindowsCIS Microsoft Windows 10 STIG v1.0.0 CAT II
1.47 UBTU-24-200610UnixCIS Ubuntu Linux 24.04 LTS STIG v1.0.0 CAT III
1.47 WN10-AC-000015WindowsCIS Microsoft Windows 10 STIG v1.0.0 CAT II
1.48 WN16-AC-000010WindowsCIS Microsoft Windows Server 2016 STIG v4.0.0 MS CAT II
1.48 WN16-AC-000010WindowsCIS Microsoft Windows Server 2016 STIG v4.0.0 DC CAT II
1.48 WN19-AC-000010WindowsCIS Microsoft Windows Server 2019 STIG v4.0.0 MS CAT II
1.48 WN19-AC-000010WindowsCIS Microsoft Windows Server 2019 STIG v4.0.0 DC CAT II
1.48 WN22-AC-000010WindowsCIS Microsoft Windows Server 2022 STIG v3.0.0 MS CAT II
1.48 WN22-AC-000010WindowsCIS Microsoft Windows Server 2022 STIG v3.0.0 DC CAT II
1.136 OL08-00-020010UnixCIS Oracle Linux 8 STIG v1.0.0 CAT II
1.137 OL08-00-020011UnixCIS Oracle Linux 8 STIG v1.0.0 CAT II
1.138 OL08-00-020012UnixCIS Oracle Linux 8 STIG v1.0.0 CAT II
1.139 OL08-00-020013UnixCIS Oracle Linux 8 STIG v1.0.0 CAT II
1.140 OL08-00-020014UnixCIS Oracle Linux 8 STIG v1.0.0 CAT II
1.141 OL08-00-020015UnixCIS Oracle Linux 8 STIG v1.0.0 CAT II
1.142 OL08-00-020016UnixCIS Oracle Linux 8 STIG v1.0.0 CAT II
1.143 OL08-00-020017UnixCIS Oracle Linux 8 STIG v1.0.0 CAT II
1.144 OL08-00-020018UnixCIS Oracle Linux 8 STIG v1.0.0 CAT II
1.145 OL08-00-020019UnixCIS Oracle Linux 8 STIG v1.0.0 CAT II
1.146 OL08-00-020020UnixCIS Oracle Linux 8 STIG v1.0.0 CAT II
1.147 OL08-00-020021UnixCIS Oracle Linux 8 STIG v1.0.0 CAT II
1.148 OL08-00-020022UnixCIS Oracle Linux 8 STIG v1.0.0 CAT II
1.149 OL08-00-020023UnixCIS Oracle Linux 8 STIG v1.0.0 CAT II
1.151 OL08-00-020025UnixCIS Oracle Linux 8 STIG v1.0.0 CAT II
1.152 OL08-00-020026UnixCIS Oracle Linux 8 STIG v1.0.0 CAT II
1.153 OL08-00-020027UnixCIS Oracle Linux 8 STIG v1.0.0 CAT II
1.154 OL08-00-020028UnixCIS Oracle Linux 8 STIG v1.0.0 CAT II
1.279 RHEL-09-411075UnixCIS Red Hat Enterprise Linux 9 STIG v1.0.0 CAT II
1.280 RHEL-09-411080UnixCIS Red Hat Enterprise Linux 9 STIG v1.0.0 CAT II
1.281 RHEL-09-411085UnixCIS Red Hat Enterprise Linux 9 STIG v1.0.0 CAT II
1.282 RHEL-09-411090UnixCIS Red Hat Enterprise Linux 9 STIG v1.0.0 CAT II
1.285 RHEL-09-411105UnixCIS Red Hat Enterprise Linux 9 STIG v1.0.0 CAT II
1.290 RHEL-09-412045UnixCIS Red Hat Enterprise Linux 9 STIG v1.0.0 CAT II
1.301 RHEL-09-431020UnixCIS Red Hat Enterprise Linux 9 STIG v1.0.0 CAT II
1.315 RHEL-09-611030UnixCIS Red Hat Enterprise Linux 9 STIG v1.0.0 CAT II
1.316 RHEL-09-611035UnixCIS Red Hat Enterprise Linux 9 STIG v1.0.0 CAT II