Solved

Account Lockout policy for IIS6

Posted on 2008-06-20
2
562 Views
Last Modified: 2008-08-06
I am running IIS6 on a windows 2003 server. I need to set an account lockout policy to prevent brute force attacks on the web sites being hosted on the server.

Do I need to do anything else other than set a local security policy on the windows 2003 server which is hosting IIS6 and my websites?

I know how to set an account lockout policy on the local server that host the IIS6 server by going to GPO Editor  Computer Configuration  Windows Settings  Security Setting  Account Policies  Account Lockout Policy.  Is there anything else I need to do?

Thanks,
0
Comment
Question by:SHAX
2 Comments
 
LVL 32

Accepted Solution

by:
r-k earned 250 total points
ID: 21835324
As far as I know that should be adequate.

Note that the Administrator account cannot be locked out, so use a strong password for that (at least 10 chars or more).
0
 
LVL 3

Assisted Solution

by:mahe2000
mahe2000 earned 250 total points
ID: 21939469
it depends on the application, i think you are talking about integrated security, you can change your settings in the local security policy (accoiunt policies/ account lockout) to establish the attepmts... in my point of view... 3 are all right!!!
0

Featured Post

Why You Should Analyze Threat Actor TTPs

After years of analyzing threat actor behavior, it’s become clear that at any given time there are specific tactics, techniques, and procedures (TTPs) that are particularly prevalent. By analyzing and understanding these TTPs, you can dramatically enhance your security program.

Join & Write a Comment

It’s a strangely common occurrence that when you send someone their login details for a system, they can’t get in. This article will help you understand why it happens, and what you can do about it.
Find out what Office 365 Transport Rules are, how they work and their limitations managing Office 365 signatures.
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
This video shows how to remove a single email address from the Outlook 2010 Auto Suggestion memory. NOTE: For Outlook 2016 and 2013 perform the exact same steps. Open a new email: Click the New email button in Outlook. Start typing the address: …

707 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

14 Experts available now in Live!

Get 1:1 Help Now