Lock a remote user account based on LDAP after X login failures.

I think that your windows team can do this if you want to protect your F5 devices:

https://docs.microsoft.com/en-us/windows/security/threat-protection/security-policy-settings/account-lockout-threshold

For using the ASM to protect the websites use "brute force attack protection":

https://support.f5.com/csp/article/K54335130

Hi Nikoolayy1,

Thank you for the answers provided previously.

We already tried to use "Account Lockout" policy on our Active Directory, but no luck with that since this policy applies only to computer and not users. May I know if it worked for you? Maybe we are configuring it wrongly.

Have a good one.

Emerson

Aha you are having a complex issue. Except the windows to make a powershell script or other kind of automation that uses GPO policy after it sees n number of faulty attempts in the active directory logs I don't know any other way. This is an interesting article about this:

https://social.technet.microsoft.com/Forums/windowsserver/en-US/007db067-d0b6-4ee6-8fee-ae14e251a121/lock-ad-user?forum=winserverGP

Nikoolayy1,

Thank you! I really appreciated your help on this. I am discussing what you have suggested internally with my team mates in order to check if it feasible.

Have a good one.