Skip navigation

Lockout Functionality should be enabled for RSSO 11.0

score 115
You have not voted. Below Review Threshold

Hi Team,

 

In the current version of RSSO, we do not have lockout functionality enabled which results in vulnerability issues.It can result in unofficial login and the application can be hacked because user account don not get block after attempting to login with wrong password as "Maximum Login Attempts" cannot bedefined

 

This functionality was present in Atrium SSO whereas in RSSO as confirmed by BMC we do not have this functionality present.

 

Thanks,

Saloni Joshi

Comments

Vote history