setting up pam tally on linux server
Posted on 2014-04-29
I'm having trouble setting up my Linux server which I recently inherited. This is for scientific calculations, and I am a professor here at the University. I am fairly new to this.
My server keeps a tally of failed login attempts. Everytime a user fails a login, it adds to the tally which is set at 10. When the tally reaches 10, the user cannot logon.
The problem is that even on a successful login, two failed tallies are added to the user. This means that the user will be locked out even if they successfully logged in 3 times.
I am playing around with the following files, but it is not successful.
I would like to do the following:
1) Change the failed tally to a higher number...like 100
2) Have the server reset the tally to zero every 24 hours
3) Make it so that a failed tally is not registered if the user successfully logs in.
Any of these three will make this server usable. Currently, it is not usable due to the problem mentioned above. Thanks for your help.