Updated on 2022-08-18 GMT+08:00

Login Authentication Policy

The Login Authentication Policy tab of the Account Security Settings page provides the Session Timeout, Account Lockout, Account Disabling, Recent Login Information, and Custom Information settings. These settings take effect for both your account and the IAM users created using the account.

Only the administrator can configure the login authentication policy, and IAM users can only view the configurations. If an IAM user needs to modify the configurations, the user can request the administrator to perform the modification or grant the required permissions.

Session Timeout

Set the session timeout that will apply if you or users created using your account do not perform any operations within a specific period.

Figure 1 Session Timeout

The timeout ranges from 15 minutes to 24 hours, and the default timeout is 1 hour.

Account Lockout

Set a duration to lock users out if a specific number of unsuccessful login attempts has been reached within a certain period. You cannot unlock your own account or an IAM user's account. Wait until the lock time expires.

Figure 2 Account Lockout

You can set the time for resetting the account lockout counter, maximum number of unsuccessful login attempts, and account lock duration.

  • Time for resetting the account lockout counter: The value ranges from 15 to 60 minutes, and the default value is 15 minutes.
  • Maximum number of unsuccessful login attempts: The value ranges from 3 to 10, and the default value is 5.
  • Lockout duration: The value ranges from 15 to 30 minutes, and the default value is 15 minutes.

Account Disabling

Set a validity period to disable IAM users if they have not accessed the cloud platform using the console or APIs within a certain period.

This option is disabled by default. The validity period ranges from 1 to 240 days.

If you enable this option, the setting will take effect only for IAM users created using your account. If an IAM user is disabled, the user can request the administrator to enable their account again.

Recent Login Information

Configure whether you want the system to display the previous login information after you log in. If incorrect login information is displayed on the Login Verification page, change your password immediately.

This option is disabled by default and can be enabled by the administrator.

Custom Information

Set custom information that will be displayed upon successful login. For example, enter the word Welcome.

No information is displayed by default, and the administrator can set custom information that will be displayed.

You and all the IAM users created using your account will see the same information upon successful login.