Copied to clipboard

Flag this post as spam?

This post will be reported to the moderators as potential spam to be looked at

  • Ansar 181 posts 291 karma points
    Apr 08, 2015 @ 20:41

    maxInvalidPasswordAttempts is not working for UsersMembershipProvider

    I have the following web.config but the backend user is not getting locked out after several invalid login attempts. 

    I am using Umbraco version 7.2.2 assembly: 1.0.5529.18522

    <add name="UsersMembershipProvider" type="Umbraco.Web.Security.Providers.UsersMembershipProvider, Umbraco" 
    minRequiredNonalphanumericCharacters="0" minRequiredPasswordLength="4" 
    useLegacyEncoding="true" enablePasswordRetrieval="false" 
    enablePasswordReset="true" requiresQuestionAndAnswer="false" 
    passwordFormat="Hashed" maxInvalidPasswordAttempts="5" passwordAttemptWindow="10" /> 


    Also is there way to implement Password Expiration feature? 

Please Sign in or register to post replies

Write your reply to: