Ensure 'aaa local authentication max failed attempts' is set to your organization's poicy

Details

Limits the maximum number of times a local user can enter a wrong password before being locked out



Rationale:



Limiting the number of failed authentication attempts is a prevention and safeguard against brute force and dictionary attacks on systems. The implementation of the aaa local authentication max failed attempts helps to limit the number of consecutive failed login attempts when the AAA authentication scheme through the local database is used as method.


Solution

Run the following to configure the maximum number of consecutive local login failures to your organzation's requirement

hostname(config-aaa-server-group)# max-failed-attempts "number"

or

Use Firepower Device Manager:

Use Objects > Identity Realm.


Supportive Information

The following resource is also helpful.

This security hardening control applies to the following category of controls within NIST 800-53: Access Control.This control applies to the following type of system Cisco_Firepower.


References


Source