Sub-Requirement 8.5.13
8.5.13 Limit repeated access attempts by locking out the user ID after not more than six attempts.
Illustrative Controls and the TIBCO LogLogic Solution
Account lockouts help ensure that brute force password attacks have limited success in the PCI environment. All in-scope systems and authentication mechanisms must be configured to lock out users after no more than six consecutive failed login attempts.
Reports and Alerts
Use the following link/reference to see the 8.5.13 reports and alerts: 8.5.13 on page 130.
Copyright © Cloud Software Group, Inc. All rights reserved.