Details
-
Suggestion
-
Resolution: Timed out
-
None
Description
Problem Definition
Currently when a Cloud domain is using Atlassian ID, there is no maximum login attempts, only the Captcha that is offered after 10 failed attempts.
Also, our Server versions of software offer a way to turn this on in General Configuration.
Suggested Solution
If a user has a managed domain, offer them the ability to set "maximum login attempts" as part of their password policy. Optionally, within the new Identity Manager
Why this is important
For better security within the system
Workaround
Using SAML with Cloud may offer maximum login attempts depending on the provider.