Rule ID
SV-283763r1203595_rule
Version
V1R1
CCIs
By limiting the number of failed login attempts, the risk of unauthorized system access via user password guessing, otherwise known as brute-forcing, is reduced.
Verify that "Number of invalid attempts permitted per login" is set to "3", and "Lockout period (when threshold breached)" is set to "15", as shown in the example below: - show system security password-options Number of invalid attempts permitted per login : 3 Lockout period (when threshold breached) : 15 If the "Number of invalid attempts permitted per login" is not set to "3", this is a finding. If the "Lockout period (when threshold breached)" is not set to "15", this is a finding.
Configure the Nokia router using the command below: - configure system security password attempts 3 lockout 15