| 1. | On the Application Preferences screen, click Logins from the Components menu. |
| 2. | Select an Authentication Method by clicking the radio button beside the option Internal Authentication, Active Directory Authentication (LDAP) or Hybrid Supporting Both. The three methods allow customization of the maximum number of login attempts, number of failed attempts and the failed attempt lockout period. Session and application timeouts are also customizable. Note: To enable Active Directory Authentication (LDAP) or Hybrid Supporting Both, a Lightweight Direct Access Protocol (LDAP) server must be configured and the administrator must have the credentials for query access on the LDAP server. When either Active Directory Authentication (LDAP) or Hybrid Supporting Both is chosen, administrators will be able to import users from the LDAP server. See Import LDAP Users. |
| 3. | Enter a maximum number of failed login attempts (up to a maximum of 999) a user is permitted before being temporarily locked out of the system in the Login Attempts field. If the field is set to 0, users will have unlimited login attempts. |
| 4. | The Timespan for Failed Attempts field is optional. This field determines the timespan for consecutive failed login attempts to be considered. Entering a value of 1 to 60 minutes indicates the desired timespan to check for failed login attempts prior to the current failed login attempt. If 0 is entered in this field, all previous failed login attempts will be considered in determining if the account should be locked. |
| 5. | Enter a lockout period (up to a maximum of 9999 minutes) for failed logins in the Lockout on Fail field. This determines how long a user must wait to try logging in again after exceeding the maximum number of failed login attempts. If the field is set to 0, no lockout occurs after users exceed the maximum number of failed login attempts. |
| 6. | Enter a session timeout period (up to a maximum of 2880 minutes) in the Session Timeout field. This indicates how long the LCMS will remain logged in without user interaction. |
| 7. | Enter a application timeout period (up to a maximum of 24 hours) in the Application Timeout field. This indicates how many hours a user may remain logged into the system before they have to verify their credentials again. If the field is set to 0, applications timeouts will be disabled. |
| 8. | Click the Show Timeout Info checkbox to have the application timeout information display in the header. Note: The application timeout information will not display in the header if the Application Timeout field is set to 0. |
|
