# Account Lockout Thresholds

> Account lockout thresholds can prevent brute-force account attacks in Sisense by limiting the number of failed login attempts that can be performed before an account is locked.

*Source: https://docs.sisense.com/main/SisenseLinux/account-lockout-thresholds.htm*

---

Last updated: June 10, 2026

|  |  |
| --- | --- |
| [Tier](https://www.sisense.com/pricing/#pricing) | [Deployment](https://docs.sisense.com/main/SisenseLinux/introduction-to-sisense-cloud-managed-services.md#ComparisonofManagedCloudandSelfHosted) |
| Enterprise | Cloud     On-Prem |

You can prevent brute-force account attacks in Sisense by limiting the number of failed login attempts that can be
performed before an account is locked.

In the **Settings** tab of the **Admin** page, you can set your account lockout thresholds
for your users. Account lockout thresholds determine after how many failed login attempts a user is locked out of
Sisense and for how long. A locked account cannot be used until you unlock it or until the number of minutes
specified by the Account lockout duration policy setting expires.

## Setting Account Lockout Thresholds

**To set your account lockout thresholds:**

1. In the **Admin** page, search for and select **Settings** which is located under Security & Access, and scroll to the **Account Lockout** section.
   ![Account lockout settings](https://docs.sisense.com/main/Resources/Images/account-lockout-settings.png)
2. By default, Account Lockout is enabled. If it is not, toggle the Account Lockout switch to turn on account
   lockout thresholds.
3. In **Number of failed login attempts before lockout**, enter how many attempts a user may fail
   before they are locked out.
4. In **Lockout duration (minutes)**, enter the amount of time, in minutes, that a user is locked out
   for after exceeding the amount of failed login attempts.
     
   You can also manage these settings with the REST API. See [Managing Account Lockout Settings via the REST API](#Managing) for more information.
5. Click **Save**.

## Unlocking Accounts

**To unlock a locked user account:**

1. In the **Admin** page, search for and select **Users** which is under the User Management section.
2. For the relevant locked user, click ![8 6penedit](https://docs.sisense.com/main/Resources/Images/8-6penedit.png). The user's account settings are displayed.
     
   ![8 6acctlockedthumb](https://docs.sisense.com/main/Resources/Images/8-6acctlockedthumb0300.png)
3. Click **Account Locked** to unlock the user.
4. Click **Save**. The user can now log in.

## Managing Account Lockout Settings via the REST API

You can manage your Account Lockout thresholds through the REST API. Sisense provides two endpoints:

GET /settings/login\_lockout
  
PATCH /settings/login\_lockout

The GET endpoint returns your current threshold settings while PATCH enables you to update these settings.

The table below describes the parameters you can return and update through the login\_lockout endpoints.

| Parameter | Type | Description |
| --- | --- | --- |
| enabled | Boolean | Determines if the Account Login threshold is active. The default value is true. |
| maxFailedAttempts | number | How many failed login attempts must occur before a user is locked out. |
| failedAttemptsPeriod | number | The period of time, in minutes, where if the user exceeds the amount of failed login attempts, they are locked out. |
| lockoutPeriod | number | The amount of time in minutes that a user is locked out for after exceeding the allowed amount of login attempts. |

**To access the login\_lockout endpoints:**

1. In Sisense, click **Admin**, and then **Rest API**.
2. In version 1.0 of the REST API, the login\_lockout endpoints are located under /Settings.

**Tip:**

For more information, see [How to unblock users after failed login attempts](https://community.sisense.com/t5/knowledge-base/how-to-unblock-users-after-failed-login-attempts-nbsp/ta-p/25114)  on the Sisense Community site.
