Re: Credcheck- credcheck.max_auth_failure

On 12/11/24 02:46, 張宸瑋 wrote:
> In the use of the Credcheck suite, the parameter 
> "credcheck.max_auth_failure = '3'" is set in the postgresql.conf file to 
> limit users from entering incorrect passwords more than three times, 
> after which their account will be locked. Due to certain requirements, I 
> would like to ask if there is a way or feature to set this parameter 
> differently for a specific user or role, so that it does not apply to 
> them. I considered using "credcheck.whitelist" to exclude certain 
> accounts, but this would cause all other parameters to apply as well, 
> and the account would still require the other password complexity 
> settings. I only wish to exclude the "credcheck.max_auth_failure" 
> parameter. Thank you in advance for your response, and I would 
> appreciate any assistance you can provide!

The issue you filed here:

https://github.com/HexaCluster/credcheck/issues/43

is the way to go to get the necessary assistance.

-- 
Adrian Klaver
adrian.klaver@aklaver.com