How to lock out a user to login a system after a set number of failed attempts in Red Hat Enterprise Linux using pam_tally/pam_tally2

Solution Verified - Updated -

Issue

  • How to lock out a user to login a system after a set number of failed attempts
  • How to limit/restrict user(s) from login after failed login attempts
  • How to lockout a user to login on server using pam_tally/pam_tally2 module
  • How do I configure PAM stack using pam_tally.so/pam_tally2.so for blocking user login using (via) ssh after failed login attempts ?
  • Is there any way to enable account lockout after 3 failed login attempts in RHEL ?
  • Configure system-auth-ac/system-auth and password-auth-ac/password-auth with pam_tally/pam_tally2
  • Configure pam_tally/pam_tally2 in RHEL system for user account lockout
  • Implementing account lockout using pam_tally

Environment

  • Red Hat Enterprise Linux 3
  • Red Hat Enterprise Linux 4
  • Red Hat Enterprise Linux 5
  • Red Hat Enterprise Linux 6
  • Red Hat Enterprise Linux 7
  • pam_tally / pam_tally2 / pam_faillock

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content