Admin settings - Login lockoutsStay organized with collectionsSave and categorize content based on your preferences.
Looker automatically locks out user accounts for five minutes after someone has tried to log in to an account and failed to enter the proper credentials four times in a row from a single IP address. If an account is locked, that account is not allowed to login from that same IP address, even with the proper credentials, until the five-minute lockout period expires. Lockouts occur on a per-user credential and per-IP address basis, so a user credential that is locked out on an IP address can still attempt to log in from a different IP address, or a different user credential can attempt to log in from that same IP address.
The lockout policy does not apply tosigned embedusers.
TheLogin Lockoutspage in theUserssection of theAdminmenu shows a list of user credentials that are currently locked out because their owners exceeded the maximum number of failed login attempts.
Included information
Column
Definition
User ID
The user ID associated with the locked account. If there is not an account associated with the credentials used for the unsuccessful login attempts, this column is empty.
Name
The name associated with the locked account. If there is not an account associated with the credentials used for the unsuccessful login attempts, this column shows "No matching account."
Email
The email address used with the unsuccessful login attempts.
Time Remaining
The amount of time left before the account unlocks.
Authentication Type
The authentication method through which the unsuccessful login attempts were made. Possible options are:
email: Invalid email address and password combination
api: Invalid Looker API credentials
totp: Invalid two-factor authentication codes
ldap: Invalid LDAP credentials
IP Address
The IP address from which the unsuccessful logins were attempted.
Actions
Shows theUnlockbutton, which lets you unlock the user account.
Unlocking an account
Looker admins can unlock an account that is currently locked, letting that user attempt to log in again before the five-minute lockout period expires. Click theUnlockbutton next to the user account that you want to unlock. Looker will display a confirmation dialog box. ClickUnlockon the dialog box to unlock the user account.
If there is a user account associated with the credentials used for the login attempts, the dialog box includes a link to that user account page.
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Hard to understand","hardToUnderstand","thumb-down"],["Incorrect information or sample code","incorrectInformationOrSampleCode","thumb-down"],["Missing the information/samples I need","missingTheInformationSamplesINeed","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2025-12-15 UTC."],[],[]]
