How to Limit the Number of Failed Login Attempts in Windows 10

By | December 25, 2021

Limiting the number of login attempts makes your Windows 10 machine more secure.

If someone has access to your PC, they may try to get into your device by guessing your password. These can pose a serious security threat, especially if they end up cracking your password. To protect yourself from this, you can limit the number of failed login attempts on your PC.

You can configure these settings either through the Local Group Policy Editor or the Control Panel. Read on to learn how to limit the number of failed login attempts in Windows 10.

Why You Should Limit the Number of Failed Login Attempts

Limiting the number of failed login attempts on your PC is one of the the best way to secure your Windows 10 PC. Depending on the settings you choose, your locked account will not be accessible until you reset it or the account lock duration has elapsed.

Hackers can automate brute force password attacks to try thousands of password combinations to bypass your account. Limiting the number of failed logins can help you prevent security threats such as brute force attacks.

You can limit the number of failed login attempts on your PC by configure Account lockout threshold, counter Account lock reset, and settings Account lock duration.

Limit Failed Login Attempts Via Local Group Policy Editor

If your PC is running Windows 10 Home Edition, you should learn how to access the Group Policy Editor in Windows Home first. Otherwise, for all other versions of Windows 10, here’s how to limit the number of failed login attempts using the Local Group Policy Editor.
  • Press the button Windows + R, type gpedit.msc, and press Enter to open Local Group Policy Editor.
  • In the navigation pane on the left, navigate to Computer Configuration > Windows Settings > Security Settings > Account Policies > Account Lockout Policy.
  • Click lock Account Lockout Policy. You will see the following three settings in the right side panel: Account lockout duration, Account lockout threshold, and counter Reset account lockout counter after.

Arrangement Account lockout threshold lets you limit the number of login attempts on your PC. Users will not access your locked account until you reset it or the time you specify in settings Account lockout duration account expired.

To configure Account lockout threshold, you need to set a value from 1-999. This number will determine which login attempts were allowed on your PC before your account was locked. Setting the value to 0 will not lock your account, regardless of how many password attempts someone makes.

  • To configure these settings, double-click Policy settings Account lockout threshold.
  • Specify your desired lockout threshold value in Account will lock out after box.
  • Click Apply and then click OK.

Reset account lockout counter after Policy settings help determine the number of minutes that must pass before your account is locked. This setting requires you to first define the account lockout threshold policy setting.

For example, you can set Account lockout threshold into five attempts and Reset account lockout counter after policy to five minutes. This will give the user five password trials within five minutes before your account is locked. You can specify a number between one and 99,999 minutes when configuring Reset account lockout counter after policy settings.

  • To configure this setting, double click Reset account lockout counter after policy settings.
  • Specify the account lockout counter value you want in the box Reset account lockout counter after.
  • Click Apply and then click OK.

Policy Settings Account lockout duration determines how long your account will remain locked before it is automatically unlocked. Like setting Reset account lockout counter, this setting requires you to specify the value of the Policy setting Account lockout threshold.

For example, you can set Account lockout threshold into five efforts and policy settings Account lockout duration be five minutes.

If the user enters the wrong password for all five attempts, your account will be locked for five minutes before unlocking it automatically. Depending on how long you want your account to be locked, you can choose a value between one and 99,999 minutes. Alternatively, you can select zero if you want your account to be locked until you unlock it manually.

  • To configure these settings, double-click Policy settings Account lockout duration.
  • Specify the lock duration value you want in the box Account is locked out for.
  • Click Apply and then click OK.

Once you are done, close Local Group Policy Editor and restart your PC to save these changes.

Limit Failed Login Attempts Via Command Prompt

Open Command Prompt by following these steps:

  • Press the button Windows + R and type CMD.
  • Click Ctrl + Shift + Enter to open an elevated Command Prompt.

To configure Account lockout threshold, type the following command in the Command Prompt:

net accounts /lockoutthreshold:5

You can replace the value in Command Prompt with any value from one to 999. This will determine how many failed login attempts your PC will allow.

Your account will be automatically locked if the user enters an incorrect password and eventually exceeds the lockout threshold value. Alternatively, you can select zero if you don’t want your account locked, regardless of the number of failed login attempts. Click Enter after selecting a value.

To configure Reset account lockout counter, type the following command in the Command Prompt:

net accounts /lockoutwindow:5

You can replace the value in Command Prompt with a number between one and 99,999. This will determine the number of minutes that must pass before your account is locked. Click Enter after selecting the value.

To configure Account lockout duration, type the following command into the Command Prompt:

net accounts /lockoutduration:5

You can replace the value in Command Prompt with a number between one and 99,999. This will determine how long your account will remain locked before it is automatically unlocked. If you set the value to zero, your account will be locked until you manually unlock it. Click Enter after selecting the value.

Once you are done, close Command Prompt and reboot your PC to save the changes.

Secure Your PC Easily

You can easily secure your PC by applying the methods we provide in this article. The process of limiting repeated login attempts is quite simple and reduces the chances of someone accessing your PC. Apart from doing this, you can set up a strong password so that hackers won’t be able to hack into your PC through a brute force attack.

Category: