My Oracle Support Banner

Oracle Linux 8: Configuring PAM pam_faillock to Lock All or Specific Accounts After Repeated Failed Login Attempts (Doc ID 2851524.1)

Last updated on FEBRUARY 24, 2022

Applies to:

Linux OS - Version Oracle Linux 8.0 and later
Linux x86-64
Linux ARM 64-bit

Goal

This document describes how to configure Linux Pluggable Authentication Module (PAM) on Oracle Linux 8 (OL8) to lock all or specific user accounts upon repeated failed login attempts.

Solution

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!


In this Document
Goal
Solution
 1. PAM configuration files
 2. Primary PAM configuration files and content
 3. Backup current PAM configuration
 4. Reconfigure PAM for account lock out of all users upon repeated login password failure
 5. Reconfigure PAM for account lock out all except named users upon repeated login password failure
 6. Monitoring and resetting faillock affected users
References

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.