We have a mixture of Questions and Answers users and SMS (mobile authenticator) users. For our Q&A users, they have 3 attempts at correctly answering their questions before they are locked out from using the software (it does not lock their AD account) which sounds like a great idea.
However, I have yet to find a way to implement the same 'lock out' policy for SMS based users.
Does anyone know how to configure this?