The customer needs to log any failed login attempts to the console and UMC to monitor for brute force attacks.
Console logins
OPERATION
will contain LOGIN
and when a user attempts to login, if they fail to login the DESCRIPTION
field will contain Failed login attempt for [username].
Example:
NOTE:Please be sure to add "with NOLOCK" to any SQL query built to pull from this table.
UMC logins
%DCS Install Path%\Server\umc\logs\umclog.log
ERROR
message stating the UPN for the "username" is not found.