Have been thinking how to protect against account locked out and DoS attack for exchange. Typical scenario would be someone lost their phone or some one id was targeted and therefore was used to attempt login from multiple location and cause the id to always lockout.
Does anyone came across anyway of handling this?
Had been reading through this https://www.messageware.com/epg/. Not sure how affective is it? and that would means another software to patch etc. Wanted to tap into the big brain of internet how to effectively or commonly dealing with this, regardless from network, appliance etc.