5 years ago

Bad Credential Monitoring

Hello,

I have recently seen an issue with the LM service taking down a few ESX hosts. The issue appears to have been caused by inadvertently applying ESXi credentials from the parent group. What had happened was that once the systems were moved into monitoring, the credentials that were imported to the root directory were used for discovery. This caused the root account to be locked out and then hostd service to become so overwhelmed that the hosts needed to be restarted. Esentially it was DDoS'ing the systems so they needed to be rebooted after the LM services were stopped. Below is the KB from VMware regarding the issues that were caused.

https://kb.vmware.com/s/article/67920

Are we able to put in place something that will stop the authentication requests if there is "X" number of failed login attempts?

Thanks in Advance.

Forum Discussion

Bad Credential Monitoring

Related Content

Managing credentials

Jira Integration - bad design

Process Monitoring

Meraki monitoring within Logic Monitor

Process monitoring (Linux)

Recent Discussions

Dashboard Sharing – An Inline Framing Method

2021-12-15 US Office Hours

Live Training - Tuning Datapoints and Alerts - 15th JUNE 2022 - APAC

Live Training - Introduction to Dashboards - 18th MAY 2022 - APAC

2022-05-11- APAC Product Overview -Collectors, Resources/Groups, Dashboards