<%@ taglib uri="http://java.sun.com/jsp/jstl/core" prefix="c" %> <%@ taglib uri="http://java.sun.com/portlet" prefix="portlet"%>

Create Security Realm -- Step 3: Advanced Configuration

Error: ${AdvancedError}
Enable Auditing:
 checked="checked" onclick="document.getElementById('auditDiv').style.display=this.checked ? 'block' : 'none';document.getElementById('auditPath').value='';"/>
noneblock;"> Log File:
If enabled, every login attempt will be recorded to the specified file. The path should be relative to the Geronimo home directory (a typical value would be var/log/login-attempts.log).
Enable Lockout:
 checked="checked" onclick="document.getElementById('lockoutDiv').style.display=this.checked ? 'block' : 'none';document.getElementById('lockoutCount').value='';document.getElementById('lockoutWindow').value='';document.getElementById('lockoutDuration').value='';"/>
blocknone;"> Lock a user after failures within seconds
and keep the account locked for seconds.
If enabled, a certain number of failed logins in a particular time frame will cause a user's account to be locked for a certain period of time. This is a defense against brute force account cracking attacks.
Store Password:
 checked="checked"/>
If enabled, the realm will store each user's password in a private credential in the Subject. This will allow access to the password later after the login process has completed. This is not normally required.

">Cancel