2.2.2.32 MaxDevicePasswordFailedAttempts

The MaxDevicePasswordFailedAttempts element is an optional child element of type unsignedByteOrEmpty (section 2.2.3.2) of the EASProvisionDoc element, as specified in section 2.2.2.28, that specifies the maximum number of failed password logon attempts that are permitted. The client SHOULD perform a local wipe or enter a timed lock out mode if the maximum number of failed password logon attempts is reached.

The MaxDevicePasswordFailedAttempts element cannot have child elements.

The MaxDevicePasswordFailedAttempts element can be empty or have a value in the range from 4 through 16. If the element is empty or not present in a response, the client interprets this as meaning that no maximum number of failed password logon attempts has been set by the security policy.

If the MaxDevicePasswordFailedAttempts element is included in a response, and the value of the DevicePasswordEnabled element (section 2.2.2.25) is set to FALSE (0), the client ignores this element.

Protocol Versions

The following table specifies the protocol versions that support this element. The client indicates the protocol version being used by setting either the MS-ASProtocolVersion header, as specified in [MS-ASHTTP] section 2.2.1.1.2.6, or the Protocol version field, as specified in [MS-ASHTTP] section 2.2.1.1.1.1, in the request.

Protocol version

Element support

2.5

12.0

Yes

12.1

Yes

14.0

Yes

14.1

Yes

16.0

Yes

16.1

Yes

Show: