PAAS 3.5.0

New/ Changed Features

Identity Server

Lockout On incorrect password attempts

This will lockout a users account for 5 minutes after 5 incorrect password attempts (lockout occurs on the 6th attempt). This prevents an attacker from attempting to brute force the users password.

Required Email Confirmation

This will prompt the user to verify their email before redirection to application.

Unlock User

A user with user admin privileges can unlock a user - this sets email address for the account to be confirmed and sends a password reset to the user.

Additional logging events to the audit for

Successful login.
Failed Login.

PAAS 3.5.0

New/ Changed Features

Identity Server

Lockout On incorrect password attempts

Required Email Confirmation

Unlock User

Audit User Login event