[keycloak-user] Another question about brute-force detection

Stian Thorgersen sthorger at redhat.com
Thu Dec 17 04:26:58 EST 2015


Currently brute force protection is not enabled for service accounts, but
there's an outstanding issue to enable this:
https://issues.jboss.org/browse/KEYCLOAK-2003

On 8 December 2015 at 16:36, Paul Blair <pblair at clearme.com> wrote:

> Currently, all of our clients will be logging in with service accounts
> using signed JWT as described here:
> http://blog.keycloak.org/2015/10/authentication-of-clients-with-signed.html
>  .
>
> Does brute-force detection accomplish anything under this scenario?
>
> _______________________________________________
> keycloak-user mailing list
> keycloak-user at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/keycloak-user
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.jboss.org/pipermail/keycloak-user/attachments/20151217/f94a400e/attachment.html 


More information about the keycloak-user mailing list