Back to Community Threads
2
Define User Session Time out (Webmail) and block login after multiple times failed login.
Question asked by Pusparaj Raut - 3/20/2025 at 12:33 AM
Unanswered
Hello,

I am trying to configure two specific settings in SmarterMail:

  1. User Session Timeout:
    I would like to define the session timeout duration for users in SmarterMail(Webmail). For example, I want the system to log users out automatically after 30 minutes of inactivity. How can I set this up through the admin interface or via API?

  2. Failed Login Attempts:
    I want to block user login after a specific number of failed login attempts. For example, after 5 failed login attempts, the account should be locked for 1 hour. Could someone guide me on how to enable this feature in SmarterMail?                                                                                                                                         I tried  adding IDS rules (by email and IP ), it shows blocked in IDS Blocks  but  i' am able to login and emails being sent or received  from that address.

    Please provide instructions for either the admin interface or API commands, depending on the best method.

4 Replies

Reply to Thread
0
mark finguerra Replied
5/1/2025 at 8:45 PM
i have the same question... anyone???
0
Jessy Bliss Replied
7/1/2025 at 3:09 PM
Has this been answered? I am needing to figure this out as well. 
0
Nr 2 for me as well otherwise they can keep password spraying 24/7.
0
Andrew Barker Replied
7/2/2025 at 7:01 AM
Employee Post
The Password Brute Force by Email IDS rules should be doing what you want for the second point. However, keep in mind that IDS rules and related blocks are bypassed for connections with an applicable whitelist entry.  For a whitelist entry to be applicable, it needs to match the client's IP and the protocol being used for the connection. Also, connections that register as localhost, 127.0.0.7, or ::1 always bypass IDS.
Andrew Barker Software Developer SmarterTools Inc. www.smartertools.com
Back to Community Threads

Reply to Thread

Enter the verification text

Related Knowledge Base Articles

Upgrading SmarterMail (Domain Conversion)SmarterMail > Installation and Configuration
554 Error - MTA Poor Reputation FixesSmarterMail > Troubleshooting
Moving SmarterMail to a New Hosting CompanySmarterMail > Domain/User Configuration and Management
Set Up a MAPI Account in Outlook 2016 and Above for WindowsSmarterMail > Desktop and Mobile Synchronization
Slow 250 response after Mail From command is issued during an SMTP session.SmarterMail > Troubleshooting