Skip to main content


Set Account Lockout Threshold for Local Accounts


The security of  your Windows user account, Is only as good as the password that's used to protect It. If It's based on commonly used, easy to guess or contains some sort of personal entries, such as part of your full name and date of birth, anyone with physical access to your computer, can easily try and guess It with repeated login attempts. As such, In this tutorial, I will demonstrate how to set an Account lockout threshold for local user accounts.


So what exactly Is an Account lockout threshold? Well, I'm glad you've asked! Simply put and without the tech jargon, It locks out a given local user account for a certain duration due to too many Invalid login attempts. Essentially, the user account cannot be accessed with the password, until either an Administrator unlocks It, or the lockout duration expires.

By default, Windows does not have a lockout policy In place, thus anyone looking to gain unauthorized access to your computer, can enter a password as many times as they like until they get It right.

To avoid repeated login attempts, I will demonstrate how to set an account lockout threshold by using the Windows native Local Security Policy. Do note that the LSP Is only available In Windows 10 Pro, Enterprise and Education editions. If you're running either of these, then this tutorial Is for you. So without further delay, let's get this started.

Step One:

To access the Local Security Policy, open the Run menu, enter secpol.msc and hit OK as shown below.


Step Two:

The Local Security Policy will now open, so click on Account Policies > Account Lockout Policy. Then on the right pane, double-click Account lockout threshold.


Step Three:

Now you need to set the number of Invalid login attempts, that will lock the account after the number has been exceeded. In my case, I've entered a value of 3. This means that after three failed logins, the account will be locked. When you've made your selection, hit OK.


Step Four:

Due to the above Implementation, both the Account lockout duration and the Reset account lockout counter have been automatically set to 30 minutes. As their name Implies, the given account will be locked for 30 minutes, and will reset back to 0 after the same duration. Click OK to finalize the process.


Step Five:

Let's put this to the test. I've rebooted my computer and I'm at the Windows login screen. I've purposely entered an Incorrect password 3 times, and now ready to login on the forth attempt. Let's see what happens thereafter In the next step.


Last Step:

As expected and as you can see, a message has been returned stating that my account Is currently locked out. Perfect!


Final Thoughts:

Keeping your PC (and other local user accounts that're active on the same device) safe from anyone trying to gain unauthorized access, Is of the utmost Importance. If you've created a strong password, setting an Account lockout threshold to lock the account after ex-amount of Invalid login attempts, Is an excellent preventative measure. It only takes a minute or so to apply, thus there's no reason not to.



Labels:

Comments

Post a Comment

Popular posts from this blog

How To Decode The Windows 10 Product Key

Every Windows 10 operating system that's Installed and activated on the computer, has what's called a Product Key , that Is either pre-Installed by the manufacturer, or added by the end user when formatting their PC. In order to have a fully-functional OS, It must contain a valid Product Key. Whilst there are many tools that can extract It from the operating system, In this tutorial, I will show you how to manually decode the Product Key.
17 comments
Read more

How To Check Faulty Drivers In Windows 10

For hardware devices to function properly, they must have device drivers  Installed, thus allow them to perform at their optimal state. It's all well and good when they're running without error, but they do tend to fail at the best of times, which can cause system Instability and/or loss of functionality. It can be a difficult task pinpointing the problematic driver(s), so In this tutorial, I will show you how to check faulty drivers , without the aid of third-party tools.
3 comments
Read more

How To Create A Fake File Of Any File Size

Depending on your business environment or Individual requirements, sometimes there Is the need to test files of a given capacity. Such tests can Include Identifying how well your hard disks perform under heavy read/write operations, or to establish whether files can be securely deleted beyond recovery. Whatever the reason may be, In this tutorial, I will show you how to create a fake file of any file size. 
5 comments
Read more