AC-7—Unsuccessful Logon Attempts

Enforce a limit of ⚙organization-defined number consecutive invalid logon attempts by a user during a ⚙organization-defined time period; and

Automatically [Selection (one or more): lock the account or node for an ⚙organization-defined time period; lock the account or node until released by an administrator; delay next logon prompt per ⚙organization-defined delay algorithm; notify system administrator; take other ⚙organization-defined action] when the maximum number of unsuccessful attempts is exceeded.