Dear Ritesh Tripathi:
I have the same requirement with you.
I neet to *"Lock user account for 30min after 3 unsuccessful login
attempts"*
Could you give me more detail about how to configure ApereoCAS +
ApacheDS to achieve the requirements
?
Great Thanks!!
Ritesh Tripathi 在 2020年11月19日 星期四上午12:45:13 [UTC+8] 的信中寫道:
> Updating this thread so that this may be useful to others:
>
> A. Started Using ApacheDS - https://directory.apache.org/apacheds/ as
> LDAP Server on windows machine.
> B. Delegated all the password policy constraints to ApacheDS. The apache
> DS can be administered via Apache Directory Studio and didn't do any
> implementation of custom code for implementing the same thing in JDBC.
> C. CAS worked wonderfully with LDAP authentication - including password
> update in LDAP at the time of password expiry etc.
>
> Thank you
>
> On Monday, 21 September 2020 at 19:57:25 UTC+5:30 [email protected] wrote:
>
>> I believe that the JDBC password policy settings are in the database
>> authentication settings:
>>
>>
>>
>>
>> https://apereo.github.io/cas/6.2.x/configuration/Configuration-Properties.html#database-authentication
>>
>>
>>
>> Specifically
>>
>>
>>
>> # cas.authn.jdbc.query[0].field-expired=
>>
>> # cas.authn.jdbc.query[0].field-disabled=
>>
>>
>>
>> Where both queries determine if an account is expired or disabled.
>>
>>
>>
>> I am not certain, but I think you need a separate system, other than CAS,
>> to expire and disable accounts in JDBC.
>>
>>
>>
>>
>>
>> *From:* [email protected] <[email protected]> *On Behalf Of *Ritesh
>> Tripathi
>> *Sent:* Sunday, September 20, 2020 12:50 PM
>> *To:* CAS Community <[email protected]>
>> *Subject:* [cas-user] Cas 6.2 - Implmentation of Custom Password Policy
>> for JDBC Authentication
>>
>>
>>
>> Hello All,
>>
>>
>>
>> We have a requirement that *"after 5 unsuccessful login attempts - we
>> need to lock the account for a day for the said user."*
>>
>>
>>
>> We are having a JDBC Authentication.
>>
>>
>>
>> We were just curious if anyone has implemented custom password policy
>> using groovy scripts or some other method for requirements as above.
>>
>>
>>
>> The CAS documentation - seems to be specific for LDAP and other cases.
>> Was not able to get more information on JDBC.
>>
>>
>>
>>
>> https://apereo.github.io/cas/6.2.x/configuration/Configuration-Properties-Common.html#password-policy-settings
>>
>>
>>
>> Will the groovy script method as given in above documentation link work
>> for JDBC as well ? Any comments or points to implement the above type and
>> similar requirements.
>>
>>
>>
>> Best Regards
>>
>> R
>>
>> --
>> - Website: https://apereo.github.io/cas
>> - Gitter Chatroom: https://gitter.im/apereo/cas
>> - List Guidelines: https://goo.gl/1VRrw7
>> - Contributions: https://goo.gl/mh7qDG
>> ---
>> You received this message because you are subscribed to the Google Groups
>> "CAS Community" group.
>> To unsubscribe from this group and stop receiving emails from it, send an
>> email to [email protected].
>> To view this discussion on the web visit
>> https://groups.google.com/a/apereo.org/d/msgid/cas-user/33d653bb-392c-457e-9d4b-b86785e2b26cn%40apereo.org
>>
>> <https://groups.google.com/a/apereo.org/d/msgid/cas-user/33d653bb-392c-457e-9d4b-b86785e2b26cn%40apereo.org?utm_medium=email&utm_source=footer>
>> .
>>
>
--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
---
You received this message because you are subscribed to the Google Groups "CAS
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].
To view this discussion on the web visit
https://groups.google.com/a/apereo.org/d/msgid/cas-user/3ad91042-2e56-4f10-bc39-0e479cde226fn%40apereo.org.
