41Provisioning Client User Guide• DoS Attack protectionFailed authentication and lockoutA subscriber or administrator account is locked out after three consecutive failedauthentication attempts. After this happens, access to the Provisioning Client isdenied during the lockout condition. This lockout condition automatically clearsafter 60 seconds (when the lockout period expires). After the lockout durationexpires, three additional authentication attempts are permitted before the nextaccount lockout.Administrators use the MCS System Management Console to configure the failedauthentication attempts and lockout duration. From the MCS System ManagementConsole, select Administration > User Password Rules. If the username andpassword are incorrect, the following message appears:The attributes, configured from the System Management Console, are:• Maximum Number of Failed Authentication Attempts— range: 1-10— default: 3• Lockout Duration Seconds— range: 1-300— default: 60 secondsNote: The number of failed attempts does not persist in permanentmemory and does not survive a software or hardware restart. The numberof failed attempts is not synchronized between different instances of theProvisioning Client, and each instance keeps a separate counter.