[keycloak-dev] That thing for too many logins

Stan Silvert ssilvert at redhat.com
Mon Jul 13 15:40:09 EDT 2015

Customer: "Does Keycloak block logins after too many failed attempts?".
Me: "Of course, that's really basic stuff."
Customer: "I've looked all over the UI and I can't find it."
Me: "I know it's there, but we did change the UI recently.  Don't 
remember what it's called."

I click around awhile.

Me: "Oh, here it is.  Failure Factor.  It's under Security Defenses -> 
Brute Force Detection."
Customer: "No wonder I couldn't find it."
Me: "Yea, it needs to be called something else."

What should Failure Factor be called?   Maybe "Max Login Failures"?

More information about the keycloak-dev mailing list