Hello - I am leveraging AD FS Proxy servers on my DMZ. However, I am still concerned that a malicious person may still try brute force attacks and cause accounts to become locked out.
Is this a legitimate concern and if so, is there anyway to mitigate this?
Does AD FS have any type of setting to deny or block a user after a number of failed attempts?
I have also seen the thread with the exact same question and have read the links in the reply, but am hoping for a more direct answer.
thank you!
-PD