Technical data
Installing an Audit Provider
Administration Guide 14-63
Installing an Audit Provider
WebLogic Server enables you to create an audit provider to receive and process
notifications of security events such as authentication requests, failed or successful
authorization attempts, and receipt of invalid digital certificates.
To use an audit provider, you create an implementation of the
weblogic.security.audit.AuditProvider interface. Then use the
Administration Console to install and activate your implementation.
To install an audit provider, enter the name of your implementation of the
AuditProvider class in the Audit Provider Class attribute on the General tab under
the Security node in the Administration Console. Reboot WebLogic Server.
For more information about writing an audit provider, see Auditing Security Events.
For an example of creating a connection filter, see the
LogAuditProvider example
in the
\samples\examples\security directory of the WebLogic Server installation.
Lockout Reset Duration Number of minutes within which invalid login
attempts must occur in order for the user’s account
to be locked.
An account is locked if the number of invalid login
attempts defined in the
Lockout Threshold
attribute happens within the amount of time
defined by this attribute. For example, if the value
in this attribute is five minutes and three invalid
login attempts are made within a six-minute
interval, then the account is not locked. If five
invalid login attempts are made within a
five-minute period, however, then the account is
locked.
The default is 5 minutes.
Lockout Cache Size Specifies the intended cache size of unused and
invalid login attempts. The default is 5.
Table 14-20 Password Protection Attributes
Attribute Description