I have set some limit of MembershipProvider in web.config.
<add name="MyMembershipProvider" type="MyMembershipProvider"
MaxInvalidPasswordAttempts="3" MinRequiredPasswordLength="6" />
But it no effect when valid user and change password.
How can I do? 5 4192
<membership>
<providers>
<remove name="AspNetSqlMembershipProvider" />
<add name="AspNetSqlMembershipProvider"
type="System.Web.Security.SqlMembershipProvider, System.Web, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a"
connectionStringName="MyConnectionstring"
minRequiredPasswordLength="4"
minRequiredNonalphanumericCharacters="0"
enablePasswordRetrieval="false"
enablePasswordReset="true"
requiresQuestionAndAnswer="true"
applicationName="/"
requiresUniqueEmail="true"
passwordFormat="Hashed"
maxInvalidPasswordAttempts="5"
passwordAttemptWindow="10"
passwordStrengthRegularExpression="" />
</providers>
</membership>
"ad" <fl****@wfes.tcc.edu.twwrote in message news:ux**************@TK2MSFTNGP04.phx.gbl...
>I have set some limit of MembershipProvider in web.config.
<add name="MyMembershipProvider" type="MyMembershipProvider" MaxInvalidPasswordAttempts="3" MinRequiredPasswordLength="6" />
But it no effect when valid user and change password.
How can I do?
Maybe 10 minutes is too long for the MaxInvalidPasswordAttempts property ?
The MaxInvalidPasswordAttempts property works in conjunction with the PasswordAttemptWindow
property to guard against an unwanted source using repeated attempts to guess the password
or password answer of a membership user.
If the number of invalid passwords or password answers entered for a membership user is greater
than or equal to the value of the MaxInvalidPasswordAttempts property within the number of minutes
specified by the PasswordAttemptWindow property, then the user is locked out of the Web site by
setting the IsLockedOut property to true until the user is unlocked by a call to the UnlockUser
method.
Try :
passwordAttemptWindow="2"
Juan T. Llibre, asp.net MVP
asp.net faq : http://asp.net.do/faq/
foros de asp.net, en español : http://asp.net.do/foros/
===================================
"Jon Paal" <Jon[ nospam ]Paal @ everywhere dot comwrote in message
news:eH**************@TK2MSFTNGP06.phx.gbl...
<membership>
<providers>
<remove name="AspNetSqlMembershipProvider" />
<add name="AspNetSqlMembershipProvider"
type="System.Web.Security.SqlMembershipProvider, System.Web, Version=2.0.0.0, Culture=neutral,
PublicKeyToken=b03f5f7f11d50a3a"
connectionStringName="MyConnectionstring"
minRequiredPasswordLength="4"
minRequiredNonalphanumericCharacters="0"
enablePasswordRetrieval="false"
enablePasswordReset="true"
requiresQuestionAndAnswer="true"
applicationName="/"
requiresUniqueEmail="true"
passwordFormat="Hashed"
maxInvalidPasswordAttempts="5"
passwordAttemptWindow="10"
passwordStrengthRegularExpression="" />
</providers>
</membership>
"ad" <fl****@wfes.tcc.edu.twwrote in message news:ux**************@TK2MSFTNGP04.phx.gbl...
>>I have set some limit of MembershipProvider in web.config.
<add name="MyMembershipProvider" type="MyMembershipProvider" MaxInvalidPasswordAttempts="3" MinRequiredPasswordLength="6" />
But it no effect when valid user and change password.
How can I do?
Typo...
Maybe 10 minutes is too long for the MaxInvalidPasswordAttempts property ?
Should have been :
Maybe 10 minutes is too long for the passwordAttemptWindow property ?
Sorry...
Try :
passwordAttemptWindow="2"
Juan T. Llibre, asp.net MVP
asp.net faq : http://asp.net.do/faq/
foros de asp.net, en español : http://asp.net.do/foros/
===================================
"Juan T. Llibre" <no***********@nowhere.comwrote in message
news:ur**************@TK2MSFTNGP04.phx.gbl...
Maybe 10 minutes is too long for the MaxInvalidPasswordAttempts property ?
The MaxInvalidPasswordAttempts property works in conjunction with the PasswordAttemptWindow
property to guard against an unwanted source using repeated attempts to guess the password
or password answer of a membership user.
If the number of invalid passwords or password answers entered for a membership user is greater
than or equal to the value of the MaxInvalidPasswordAttempts property within the number of minutes
specified by the PasswordAttemptWindow property, then the user is locked out of the Web site by
setting the IsLockedOut property to true until the user is unlocked by a call to the UnlockUser
method.
Try :
passwordAttemptWindow="2"
Juan T. Llibre, asp.net MVP
asp.net faq : http://asp.net.do/faq/
foros de asp.net, en español : http://asp.net.do/foros/
===================================
"Jon Paal" <Jon[ nospam ]Paal @ everywhere dot comwrote in message
news:eH**************@TK2MSFTNGP06.phx.gbl...
> <membership> <providers> <remove name="AspNetSqlMembershipProvider" /> <add name="AspNetSqlMembershipProvider" type="System.Web.Security.SqlMembershipProvider, System.Web, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a" connectionStringName="MyConnectionstring" minRequiredPasswordLength="4" minRequiredNonalphanumericCharacters="0" enablePasswordRetrieval="false" enablePasswordReset="true" requiresQuestionAndAnswer="true" applicationName="/" requiresUniqueEmail="true" passwordFormat="Hashed" maxInvalidPasswordAttempts="5" passwordAttemptWindow="10" passwordStrengthRegularExpression="" /> </providers> </membership>
"ad" <fl****@wfes.tcc.edu.twwrote in message news:ux**************@TK2MSFTNGP04.phx.gbl...
>>>I have set some limit of MembershipProvider in web.config.
<add name="MyMembershipProvider" type="MyMembershipProvider" MaxInvalidPasswordAttempts="3" MinRequiredPasswordLength="6" />
But it no effect when valid user and change password.
How can I do?
Dose we need implement these features in my custom Membership provider or
just set these feature in web.config?
"Juan T. Llibre" <no***********@nowhere.com¼¶¼g©ó¶l¥ó·s»D:%2******* *********@TK2MSFTNGP03.phx.gbl...
Typo...
>Maybe 10 minutes is too long for the MaxInvalidPasswordAttempts property ?
Should have been :
>Maybe 10 minutes is too long for the passwordAttemptWindow property ?
Sorry...
Try :
passwordAttemptWindow="2"
Juan T. Llibre, asp.net MVP
asp.net faq : http://asp.net.do/faq/
foros de asp.net, en español : http://asp.net.do/foros/
===================================
"Juan T. Llibre" <no***********@nowhere.comwrote in message
news:ur**************@TK2MSFTNGP04.phx.gbl...
>Maybe 10 minutes is too long for the MaxInvalidPasswordAttempts property ?
The MaxInvalidPasswordAttempts property works in conjunction with the PasswordAttemptWindow property to guard against an unwanted source using repeated attempts to guess the password or password answer of a membership user.
If the number of invalid passwords or password answers entered for a membership user is greater than or equal to the value of the MaxInvalidPasswordAttempts property within the number of minutes specified by the PasswordAttemptWindow property, then the user is locked out of the Web site by setting the IsLockedOut property to true until the user is unlocked by a call to the UnlockUser method.
Try :
passwordAttemptWindow="2" Juan T. Llibre, asp.net MVP asp.net faq : http://asp.net.do/faq/ foros de asp.net, en español : http://asp.net.do/foros/ =================================== "Jon Paal" <Jon[ nospam ]Paal @ everywhere dot comwrote in message news:eH**************@TK2MSFTNGP06.phx.gbl...
>> <membership> <providers> <remove name="AspNetSqlMembershipProvider" /> <add name="AspNetSqlMembershipProvider" type="System.Web.Security.SqlMembershipProvider, System.Web, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a" connectionStringName="MyConnectionstring" minRequiredPasswordLength="4" minRequiredNonalphanumericCharacters="0" enablePasswordRetrieval="false" enablePasswordReset="true" requiresQuestionAndAnswer="true" applicationName="/" requiresUniqueEmail="true" passwordFormat="Hashed" maxInvalidPasswordAttempts="5" passwordAttemptWindow="10" passwordStrengthRegularExpression="" /> </providers> </membership>
"ad" <fl****@wfes.tcc.edu.twwrote in message news:ux**************@TK2MSFTNGP04.phx.gbl... I have set some limit of MembershipProvider in web.config.
<add name="MyMembershipProvider" type="MyMembershipProvider" MaxInvalidPasswordAttempts="3" MinRequiredPasswordLength="6" />
But it no effect when valid user and change password.
How can I do?
Unless you are creating a Custom Membership Provider from scratch
( I doubt that ), you will be *inheriting* from System.Web.Security.MembershipProvider.
As such, *all* the features in the the Membership Provider class
are available to you in your inherited, custom, class.
Juan T. Llibre, asp.net MVP
asp.net faq : http://asp.net.do/faq/
foros de asp.net, en español : http://asp.net.do/foros/
===================================
"ad" <fl****@wfes.tcc.edu.twwrote in message news:%2***************@TK2MSFTNGP06.phx.gbl...
Dose we need implement these features in my custom Membership provider or just set these feature
in web.config?
"Juan T. Llibre" <no***********@nowhere.com>
¼¶¼g©ó¶l¥ó·s»D:%2****************@TK2MSFTNGP03.phx .gbl...
>Typo...
>>Maybe 10 minutes is too long for the MaxInvalidPasswordAttempts property ?
Should have been :
>>Maybe 10 minutes is too long for the passwordAttemptWindow property ?
Sorry...
Try :
passwordAttemptWindow="2" Juan T. Llibre, asp.net MVP asp.net faq : http://asp.net.do/faq/ foros de asp.net, en español : http://asp.net.do/foros/ =================================== "Juan T. Llibre" <no***********@nowhere.comwrote in message news:ur**************@TK2MSFTNGP04.phx.gbl...
>>Maybe 10 minutes is too long for the MaxInvalidPasswordAttempts property ?
The MaxInvalidPasswordAttempts property works in conjunction with the PasswordAttemptWindow property to guard against an unwanted source using repeated attempts to guess the password or password answer of a membership user.
If the number of invalid passwords or password answers entered for a membership user is greater than or equal to the value of the MaxInvalidPasswordAttempts property within the number of minutes specified by the PasswordAttemptWindow property, then the user is locked out of the Web site by setting the IsLockedOut property to true until the user is unlocked by a call to the UnlockUser method.
Try :
passwordAttemptWindow="2" Juan T. Llibre, asp.net MVP asp.net faq : http://asp.net.do/faq/ foros de asp.net, en español : http://asp.net.do/foros/ =================================== "Jon Paal" <Jon[ nospam ]Paal @ everywhere dot comwrote in message news:eH**************@TK2MSFTNGP06.phx.gbl... <membership> <providers> <remove name="AspNetSqlMembershipProvider" /> <add name="AspNetSqlMembershipProvider" type="System.Web.Security.SqlMembershipProvider, System.Web, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a" connectionStringName="MyConnectionstring" minRequiredPasswordLength="4" minRequiredNonalphanumericCharacters="0" enablePasswordRetrieval="false" enablePasswordReset="true" requiresQuestionAndAnswer="true" applicationName="/" requiresUniqueEmail="true" passwordFormat="Hashed" maxInvalidPasswordAttempts="5" passwordAttemptWindow="10" passwordStrengthRegularExpression="" /> </providers> </membership>
"ad" <fl****@wfes.tcc.edu.twwrote in message news:ux**************@TK2MSFTNGP04.phx.gbl... >I have set some limit of MembershipProvider in web.config. > <add name="MyMembershipProvider" type="MyMembershipProvider" MaxInvalidPasswordAttempts="3" MinRequiredPasswordLength="6" /> > But it no effect when valid user and change password. > How can I do? > >
This thread has been closed and replies have been disabled. Please start a new discussion. Similar topics
by: emily_g107 |
last post by:
Hi,
I need to limit results in the following query type:
...
|
by: Diego |
last post by:
I've created a Custom MembershipProvider, in the user creation i have to
return somehow the ProviderUserKey but inside the MembershipProvider I have
no access to the session to store the info....
|
by: Graham |
last post by:
I have created a custom MembershipProvider called "LassieMembershipProvider"
that derives from "MembershipProvider". This providor is located in a
Businesslogic layer dll called...
|
by: Mark Olbert |
last post by:
So far, I am more than a little underwhelmed by the Membership API in ASPNET2, and the ASP.NET Configuration wizard in VS2005. The
latter is slow as a pig whenever it does anything. Oh well, at...
|
by: Mark Olbert |
last post by:
I've written a custom MembershipProvider and a custom RoleProvider, and am trying to get them to work with the ASP.NET Configuration
tool. Which is a royal pain in the butt, because there doesn't...
|
by: ibiza |
last post by:
Hi all,
I'd like to write my own MembershipProvider for my ASP.NET 2.0 web
application but I fear all the code to write. Basically, I only want to
add a few functionalities like being able to...
|
by: Ian Semmel |
last post by:
Is the MembershipProvider instance unique to a Session ? ie does each
session have its own copy ?
|
by: Rory Becker |
last post by:
Having now created a Custom MembershipProvider that seems to work correctly
with my Logon and ChangePassword controls, I am, as they say, a happy bunny.
The next stange is to move on to the...
|
by: Andy B |
last post by:
I need to have some simple examples of how to do the following:
1. Create an asp.net MembershipProvider from scratch
2. Extend the existing XMLSiteMapProvider that comes with asp.net to include...
|
by: Charles Arthur |
last post by:
How do i turn on java script on a villaon, callus and itel keypad mobile phone
|
by: emmanuelkatto |
last post by:
Hi All, I am Emmanuel katto from Uganda. I want to ask what challenges you've faced while migrating a website to cloud.
Please let me know.
Thanks!
Emmanuel
|
by: Sonnysonu |
last post by:
This is the data of csv file
1 2 3
1 2 3
1 2 3
1 2 3
2 3
2 3
3
the lengths should be different i have to store the data by column-wise with in the specific length.
suppose the i have to...
|
by: Hystou |
last post by:
There are some requirements for setting up RAID:
1. The motherboard and BIOS support RAID configuration.
2. The motherboard has 2 or more available SATA protocol SSD/HDD slots (including MSATA, M.2...
|
by: Hystou |
last post by:
Most computers default to English, but sometimes we require a different language, especially when relocating. Forgot to request a specific language before your computer shipped? No problem! You can...
|
by: jinu1996 |
last post by:
In today's digital age, having a compelling online presence is paramount for businesses aiming to thrive in a competitive landscape. At the heart of this digital strategy lies an intricately woven...
|
by: Hystou |
last post by:
Overview:
Windows 11 and 10 have less user interface control over operating system update behaviour than previous versions of Windows. In Windows 11 and 10, there is no way to turn off the Windows...
|
by: tracyyun |
last post by:
Dear forum friends,
With the development of smart home technology, a variety of wireless communication protocols have appeared on the market, such as Zigbee, Z-Wave, Wi-Fi, Bluetooth, etc. Each...
|
by: agi2029 |
last post by:
Let's talk about the concept of autonomous AI software engineers and no-code agents. These AIs are designed to manage the entire lifecycle of a software development project—planning, coding, testing,...
| |