Yes if you entered your credentials wrong 5 times, you will be looked out. You can set maxInvalidPasswordAttempts to a different value for the UsersMembershipProvider in your web.config file. For example maxInvalidPasswordAttempts="15".
It's to prevent hackers from trying millions of passwords trying to guess yours.
But if you can´t remember your password or get a colleague to change you password for your user and have access to the databse, then you could reset the password in the database for your user.
BUT be careful you are dealing with the database !
Try to see this post where Jan and I describe how I can be done.
How long is the lockout period? It's not infinite, is it?
I hope not, because otherwise a malicious person realises your site is in Umbraco (which isn't too difficult) and then deliberately keeps entering the wrong password for the "admin" account. Isn't this going to lock that account out permanently?
Just in case anyone has this problem with an upgrade to 7.6.1 (like I have) then check the before-and-after of the UmbracoMembershipProvider and UsersMembershipProfile settings.
7.6 seems to enforce a stronger model. All fine and well for a brand new site, but it meant that I could not log in until I reverted the values.
Locked out admin user
Hi,
We entered the wrong password a few times and now we seem to locked ourself out from our own backoffice account.....
Is there any way to reset this so we can log in at the backoffice again?
We're using Umbraco 7.1.4 by the way
Hi tranro,
Yes if you entered your credentials wrong 5 times, you will be looked out. You can set
maxInvalidPasswordAttemptsto a different value for theUsersMembershipProviderin your web.config file. For examplemaxInvalidPasswordAttempts="15".It's to prevent hackers from trying millions of passwords trying to guess yours.
But if you can´t remember your password or get a colleague to change you password for your user and have access to the databse, then you could reset the password in the database for your user.
BUT be careful you are dealing with the database !
Try to see this post where Jan and I describe how I can be done.
http://our.umbraco.org/forum/using/ui-questions/49134-Forget-My-Password-For-Umbraco-Admin-Site
Hope you get it solved.
/Dennis
Thank you Dennis! We solved it
How long is the lockout period? It's not infinite, is it?
I hope not, because otherwise a malicious person realises your site is in Umbraco (which isn't too difficult) and then deliberately keeps entering the wrong password for the "admin" account. Isn't this going to lock that account out permanently?
Just in case anyone has this problem with an upgrade to 7.6.1 (like I have) then check the before-and-after of the UmbracoMembershipProvider and UsersMembershipProfile settings.
7.6 seems to enforce a stronger model. All fine and well for a brand new site, but it meant that I could not log in until I reverted the values.
Previous values:
Newer values:
FYI:
There is also a cool little package by Richard Soeteman that would also do the job. Check it out!
https://our.umbraco.org/projects/developer-tools/umbraco-admin-reset/
Works a treat!
Seeing as nobody answered Dan Diplos quesiton I'll ask it again.
How long is the lockout period?
is working on a reply...