Restrict number of Login attempts in Windows 11/10
With the use of Local Security Policy, you can easily implement this feature in Windows 11/10, via the Local Security Policy. Do note that the Local Security Policy is only available in select versions of Windows. To implement this security measure in your Windows 11/10/8/7, type Local Security Policy in the search box in the Start menu and press Enter.
Account lockout threshold policy
Now in the LHS pane, select Account Lockout Policy from under Account Policies as shown below. Double-click Account Lockout Threshold.
Now select the number of invalid login attempts after which you want to lock the computer. Click OK.
Account lockout duration policy
Next Windows will notify you that Account lockout duration and Reset account lockout counter will be set to default. You can either choose the default value or change it later. After you are done, click OK.
To change the default values of the above-mentioned settings, just double-click the setting that you want to change and set the desired value.
The Reset account lockout counter after security setting determines the number of minutes that must elapse after a failed login attempt before the failed logon attempt counter is reset to 0 bad logon attempts. The available range is 1 minute to 99,999 minutes. If an account lockout threshold is defined, this reset time must be less than or equal to the Account lockout duration.
Click OK once the desired values are set! Now if anyone enters the wrong password for more than the set number of times, the user account will get locked out, and the Administrator will have to unlock it. Incidentally, to see your Current Account Lockout Threshold Setting, type ‘net accounts’ in an elevated CMD and hit Enter.
Here you will see your current values. For users that do not have Group Policy, there is still a way to set the values via the command prompt Open an elevated Command Prompt and use the following to set the values (replace X with the value you wish). Afterward, type in ‘net accounts‘ to view the applied changes. Now see how you can Harden Windows Login Password Policy.