Account lockout threshold

This security setting determines the number of failed logon attempts that causes a user account to be locked out. A locked-out account cannot be used until it is reset by an administrator or until the lockout duration for the account has expired. You can set a value between 0 and 999 failed logon attempts. If you set the value to 0, the account will never be locked out.

Failed password attempts against workstations or member servers that have been locked using either CTRL+ALT+DELETE or password-protected screen savers count as failed logon attempts.

Policy path: 

Computer Configuration\Windows Settings\Account Policies\Account Lockout Policy

Default: 

0.

Supported on: 

At least Windows XP SP2, Windows Server 2003

Registry settings: 

Account Lockout Policy security settings are not registry keys.

Reboot required: 

No

Related content