Imperva Cyber Community

communities_1.jpg
 View Only
  • 1.  Can Imperva Cloud WAF support these login conditions?

    Posted 05-28-2023 10:16

    Greetings all..

    Would like to ask if Imperva Cloud WAF is able to support these login conditions?

    1. Disable account after X consecutive login failures on the CWAF portal
    2. Session expires after X mins of inactivity on the CWAF portal
    3. Password to login to CWAF portal shall expire after X days and cannot be the same as the last Y passwords


    #CloudWAF(formerlyIncapsula)

    ------------------------------
    Ho Larry
    Sales
    M.Tech Products Pte Ltd
    Singapore
    ------------------------------


  • 2.  RE: Can Imperva Cloud WAF support these login conditions?

    Posted 05-30-2023 04:25

    Hi! The Imperva Cloud Security Console has its own password policy which applies to all users who are using the local password option. 

    Imperva will lock the user out for 30 minutes after six failed attempts to log in to the Cloud Security Console within 30 minutes.
    The Cloud Security Console has an idle timeout of 15 minutes. If your connection is idle for more than 15 minutes, you will be automatically logged out
    The user login password expires after 90 days and cannot use any of the previous 6 passwords.

    Please note that this does not apply for users logging in to the Cloud Security Console via their organization's SSO.

    Do check out the following link for a more elaborated information.
    https://docs.imperva.com/bundle/cloud-application-security/page/password-policy.htm



    ------------------------------
    Tit King Tan
    Escalation Engineer
    Tel Aviv CA
    ------------------------------