How to lock out a user to login a system after a set number of failed attempts in Red Hat Enterprise Linux using pam_tally/pam_tally2

Solution Verified - Updated -

Issue

  • How to lock out a user to login a system after a set number of failed attempts
  • How to limit/restrict user(s) from login after failed login attempts
  • How to lockout a user to login on server using pam_tally/pam_tally2 module
  • How do I configure PAM stack using pam_tally.so/pam_tally2.so for blocking user login using (via) ssh after failed login attempts ?
  • Is there any way to enable account lockout after 3 failed login attempts in RHEL ?
  • Configure system-auth-ac/system-auth and password-auth-ac/password-auth with pam_tally/pam_tally2
  • Configure pam_tally/pam_tally2 in RHEL system for user account lockout
  • Implementing account lockout using pam_tally

Environment

  • Red Hat Enterprise Linux 3
  • Red Hat Enterprise Linux 4
  • Red Hat Enterprise Linux 5
  • Red Hat Enterprise Linux 6
  • Red Hat Enterprise Linux 7
  • pam_tally / pam_tally2 / pam_faillock

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase of over 48,000 articles and solutions.

Current Customers and Partners

Log in for full access

Log In
Close

Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.