Question:
Why are invalid login attempts not appearing under Vault Login Audit History?
Answer:
Invalid login attempts are captured at the domain-level and are not exposed when filtering for a specific Vault.
When expected invalid login attempts do not appear in the Login Audit History log, most likely a filter is used to query a specific vault.
Related Documentation:
Vault KB articles:
- Can an email notification be configured for account lockouts after invalid login attempts in Vault?
- How can users query long periods of time at the domain-level from Login Audit History in Vault?
- Does the account lockout policy used by Vault violate FDA regulation 21CFR11.300?
Vault Help Documentation:
- Configuring Password Security Policies > User Account Lockouthttps://platform.veevavault.help/en/gr/1985/