|Finding ID||Version||Rule ID||IA Controls||Severity|
|By limiting the number of failed login attempts, the risk of unauthorized system access via user password guessing, otherwise known as brute forcing, is reduced.|
|Network WLAN AP-NIPR Management Security Technical Implementation Guide||2021-04-16|
|Check Text ( C-46440r719948_chk )|
| Review the configuration and verify the number of unsuccessful SSH logon attempts is set at "3", after which time it must block any login attempt for 15 minutes. |
If the device is not configured to reset unsuccessful SSH logon attempts at "3" and then block any login attempt for 15 minutes, this is a finding.
|Fix Text (F-46397r719949_fix)|
|Configure the network device to require a maximum number of unsuccessful SSH logon attempts at "3", after which time it must block any login attempt for 15 minutes.|