PCI Requirement- 8.5.13.a - 8.5.13.b Limit repeated access attempts by locking out the user ID after not more than six attempts.ID: oval:org.secpod.oval:def:6367 | Date: (C)2012-07-16 (M)2017-11-20 |
Class: COMPLIANCE | Family: macos |
For a sample of system components, obtain and inspect system configuration settings to verify that authentication parameters are set to require that a user���s account be locked out after not more than six invalid logon attempts.
For service providers only, review internal processes and customer/user documentation to verify that non-consumer user accounts are temporarily locked-out after not more than six invalid access attempts.