This isn't a critique, but more of a question ... why would I care about just one (or even 2 or 3) failed login(s)? People fat-finger their password all the time.
Lets say you have a "break glass" account that only you and someone else on your team knows about. Setting up alerting around that account allows you know when anyone has worked with it or if they have failed at successfully authenticating.
Thanks . This is amazingly powerful
Very interesting!
Nice video! He mentioned Github?
Can the forensics investigation piece be extended?
This isn't a critique, but more of a question ... why would I care about just one (or even 2 or 3) failed login(s)? People fat-finger their password all the time.
Lets say you have a "break glass" account that only you and someone else on your team knows about. Setting up alerting around that account allows you know when anyone has worked with it or if they have failed at successfully authenticating.