Advanced Access Settings

The following advanced settings are always available in the Access Controller:

  • Number Of Consecutive Erroneous Login Attempts - The maximum number of failed login attempts that are permitted

  • Enable Logging For User Login - Failed login attempts are logged in the System Log.

  • Reauthenticate Users After Inactivity – Users must reauthenticate after a period of inactivity in the Desktop or mzsh shell.

  • Time of Inactivity Before Reauthentication (Minutes) – This is a configurable inactivity period.

  • Enable Automatic Unlocking of Users – Automatically unlock accounts that have been disabled due to failed login attempts.

  • Time Before Automatic Unlocking (Minutes) – This is the time that must pass before a locked account is automatically unlocked by the system.

  • Authentication Method - User authentication is by default performed in MediationZone. As an alternative, you can connect MediationZone to an external LDAP directory for delegated authentication. This facilitates automation of administrative tasks such as creation of users and assigning access groups.

image-20240301-100813.png

Advanced settings and authentication method

If the external authentication server returns an error or cannot be accessed, MediationZone will perform the authentication internally as a fallback method.