Lock down accounts after several login failures
If you are looking for a measurement that locking down accounts after several PrimeHub login failure to avoid brute force attacks, we can utilize the
Brute Force Detection feature of Keycloak to achieve it.
Login Keycloak of PrimeHub with a Keycloak admin account.
Make sure it is under Primehub realm (it should show Primehub at top left corner, change to Primehub if not.), like the screenshot below.
Goes to Authentication and select Password Policy tab.
Click Add policy drop list and select the policy.
We can set the detail of rules.