Can SnapCenter lock out accounts after a threshold of unsuccessful login attempts is reached?
Applies to
- SnapCenter (SC)
- SnapCenter Plug-in for VMware vCenter (SCV)
Answer
- No - the only self-reporting functions SnapCenter is capable of performing are application EMS alerts related to job status, such as success or failure of backups, clones, and restore events: there is no reporting of any authentication processes or events
- See Additional Information section below for possible work-around
Additional Information
Optional Work-around:
- The SnapCenter Plug-in for VMware vSphere appliance has an authentication log located under
/var/log
calledauth.log
. This file keeps a record of successful and unsuccessful authentications using either the diag or maint local accounts. - It's possible a custom script could be implemented to capture events from auth.log and forward logs to a security information and event management system (SIEM)**
**Note: custom script creation, debugging and support are the sole responsibility of the end user and are not included under NetApp's terms of service for support offerings