Managed Risk

Risk Dashboard

Updated Jan 25, 2024

Disable brute force scanning

Brute force scanning can lead to active directory or standard account lockouts if you have devices on your network that use the default or known usernames. Arctic Wolf® recommends that you update the device username from the known or default values to both enhance your security posture and avoid account lockouts during scanning. If that is not possible, you can disable the brute force scanning checks.

Note: Brute force scanning is separate from OpenVAS scanning. OpenVAS scanning performs regular vulnerability checks, for example on default username and passwords, regardless of whether brute force scanning is enabled.

  1. Sign in to the Risk Dashboard.

  2. In the navigation menu, click Config > Scanner Config.

  3. In the Scanner Configuration section, click Troubleshooting Settings.

    The Troubleshooting settings dialog appears.

  4. Click the Brute force checks toggle to the off position.

  5. Click Close.

    Your changes are automatically saved.