Skip past navigation linksSecure Global Desktop Administration Guide > Users and authentication > Denying users access to Secure Global Desktop after failed login attempts

Denying users access to Secure Global Desktop after failed login attempts

By enabling a login failure handler, Administrators can deny users access to Secure Global Desktop after three failed login attempts. This additional security measure only works if users have ENS person objects.

To enable the login failure handler:

  1. On the command line, type:
    tarantella config edit --tarantella-config-components-loginfailurehandler 1
  2. Then type:
    tarantella config edit --tarantella-config-components-loginfailurefilter 1

Notes on enabling the login failure handler

Can I change the number of login attempts users get?

Yes, the number of login attempts users get is configurable. To change the number of login attempts:

  1. Log in to the primary Secure Global Desktop server.
  2. Stop the primary Secure Global Desktop server. On the command line, type:
    tarantella stop.
  3. Set the number of login attempts. On the command line, type:
    tarantella config edit --com.sco.tta.server.login.LoginFailureHandler.properties-attemptsallowed number.
  4. Start the primary Secure Global Desktop server. On the command line, type:
    tarantella start.
  5. Do a warm restart of all secondary Secure Global Desktop servers (tarantella restart --warm).
Related topics