Can the default settings be overridden? 

I would like to change the default to 3 invalid attempts, and set a longer time for the lockout duration, 10 minutes is not really effective. 

I have gotten 437 emails for bad login attempts today, I know I am under attack. Can entire IP blocks be banned, or do black listed IP addresses need to be done 1 by 1, (way too exhaustive a procedure).
I know I can block them at the firewall, but I would like Xeams to just reject the connection......

Dave,

The 10 minutes lockout period starts from the last attempt not first - meaning if someone is continuously attacking with less than 10 minute gaps in between, their IP will always remain blocked. It will get unblocked 10 minutes AFTER they stop attacking.

If you would still like to increase this period, follow the steps below:

• Create/modify $INSTALL_DIR\config\server.properties file and add the following line
• invalid.pwd.blocked.time=20
• The above line sets this parameter to 20 minutes
• Save the file
• Restart Xeams

Hello,

I was interested in this solution, but when I go to the $INSTALL_DIR\config\ folder, there is no "server.properties" file, but there is a "service.properties" file. Is the latter the correct file to modify?

server.properties and service.properties are two different files. Create a new file with the name server.properties if it does not exist. You should never modify service.properties without Synametrics Support explicitly asking you to do it.