SN System Properties Reference
Property reference

password_reset.request.max_attempt_window

The password_reset.request.max_attempt_window property defines the waiting period in minutes for users attempting to reset or change their password after exceeding the maximum number of unsuccessful attempts. With a default value of 1440 minutes, this setting helps enhance security by preventing immediate retries.

Default: 1440 Type: integer Application: Global

Key questions about this property

The answers below summarize the purpose, scope, default effect, and review scenarios for this property.

What does it do? This property specifies the duration users must wait before they can attempt to reset their password again after reaching the limit of failed attempts.
What area does it affect? Password Management
What does the default mean? The default value is "1440", which sets the baseline numeric behavior for this property.
When should you review it? Review this property when adjusting security policies related to password management.

Out of the box property record

Raw metadata from the property record.

Property name password_reset.request.max_attempt_window
Sys ID 603ba124ebc101006a668c505206fe10
Type integer
Application Global
Default value 1440
Description Number of minutes a user needs to wait for resetting/changing password after exceeding the maximum allowed unsuccessful attempts
Updated 2024-05-25 04:32:39

Sources

Official references and nearby text excerpts where this property appears.

Documentation excerpt View supporting context
Context preview Snippet 1
... user has before they are locked out for a period determined by the value in max_attempt_window. • Type: integer • Default value: 3 (attempts) • Location: Password Reset > Properties password_reset.request.max_attempt_window Specifies how long a user is locked out or prevented from changing their password after trying the maximum number of times. • Type: integer • Default value: 1440 (minutes) • ...
Documentation excerpt View supporting context
Context preview Snippet 2
... maximum number of unsuccessful password reset attempts that can be taken before the user is locked out of password reset process. The lockout period is determined by the value in "password_reset.request.max_attempt_window". • Security Risk ◦(Old‎ <blank> ◦(New‎ If the value is too high, then it could be possible to perform brute force attack against password reset process. Enable CAPTCHA in password ...
Documentation excerpt View supporting context
Context preview Snippet 3
... Password Reset PRB1946757 Issues with the first time login registration process and redirection for external users Password Reset Widget for Service Portal PRB1938892 Change Password does not honor the property "password_reset.request.max_attempt_window" PDF Generation PRB1959833 Header and footer fetches the default type in the report PDF PDF Generation PRB1827843 PDF has missing list attributes when a user exports to PDF from a ...
Documentation excerpt View supporting context
Context preview Snippet 4
... Property Name Description • Type: integer • Default value: 3 (attempts) Number of minutes a user needs to wait for resetting/ changing password after exceeding the maximum allowed unsuccessful attempts password_reset.request.max_attempt_window Time period that users are blocked or prevented from changing their passwords after trying the maximum number of times. • Type: integer • Default value: 1440 (minutes) Number of minutes ...
Additional source link Another external reference for this property
Open reference