SilkStart's built-in account lockout policy helps to keep bad-actors and malicious programs from intruding on client accounts and accessing personal information.
The policy works by allowing a maximum of four failed sign-in attempts before the account become temporarily locked. Once the account is locked, it can only be accessed again by either resetting the account password, or by waiting for 30 minutes.
To increase the security for your organization and for your members, we also recommend creating a strong password policy, more details available here: What are the minimum password requirements for a user?
The failed password lockout policy can create minor irritation for members who have forgotten their password; however, it is a necessary burden for the benefit of keeping your users and your organization more secure.