So you can lock your PC if someone misses the password multiple times. A very important security measure that is not default in Windows.
Although it is understood as a basic security measure in mobile phones, most computers do not have a temporary lock in case the password is failed too many times. That is, unless you have configured it yourself, anyone with physical access to your computer can log into your account with enough patience.
Luckily, Windows allows you temporarily block your user in case someone fails the password too many times or the pin, although the process is quite complicated.
Some previous advice
First of all, it is important that you have an administrator account other than the one where you are going to configure the lock after password failure. In this way, if you or someone you trust fails the password too many times, you can recover your account quickly through the administrator.
Furthermore, this setting only works on local accounts. If you have an account linked to Microsoft’s, you will have to change your account to local (Settings> Accounts> Your information). The configuration that we are going to explainr works on local Windows Home 7, 8 and 10 accounts.
Configure your PC to lock it if someone misses the password multiple times
To configure automatic locking after repeated failures, the first thing you have to do is open command line in administrator mode. To do this, right click on the Start menu (or use the Ctrl + X shortcut) and selectCommand Prompt (Administrator).
Once on the command line type the following and hit Enter:
With this command you will be able to see your current password settings. Among other things, you will see that it sets the blocking threshold: never. This means that the computer will never crash, regardless of the number of times you enter a wrong password. You can change that limit by entering the following command:
net accounts / lockoutthreshold: 5
In the example we have set 5, but you can replace that number with any other you want to set as the failure limit. Make sure, of course, to give yourself a minimum margin of error, so as not to block your account due to a small typing error.
Then you have to configure lock time, in minutes, to do this enter the following command (the final number being the configured time):
net accounts / lockoutduration: 60
Finally, you can configure the time that must elapse before the error counter resets. That is, if you fail for example 3 times with the error limit 5, after the time you are going to determine now, you will have all the attempts again. Use the following command to configure it:
net accountsw / lockoutwindow: 60
Finally, re-enter the command net accounts for make sure that the configuration has been as you wanted. You have to check the blocking threshold, blocking duration and obs window values. lock.
How does the configuration work in practice?
When entering the password, you will not usually notice any difference. There is no indication of how many attempts remain before the block, or how long the block lasts. Simply, upon reaching the error limit, a message appears saying that the account is locked until the configured time expires.
If for whatever you want disable lock, simply enter the following command at the administrator command line:
net accounts / lockoutthreshold: 0