The SysManager > Preferences > Guests > Misc tab > Minutes to keep guest login locked setting is enforced in the E-Commerce pages. When the number of failed log-in attempts for a guest equals the number set in SysManager > Preferences > Guests > Misc tab > Number of failed login attempts before lock, the guest is redirected to the error.aspx page where the message configured with the LockoutMessage key is displayed. The visitor/guest is locked out of his guest record for the number of minutes set in the Minutes to keep guest login locked setting, and each time that the user attempts to log-in again before the time has elapsed, he is redirected back to that message on the error.aspx page. If a locked out guest tries to log-in again after the time has passed and his log-in is successful, the lockout is removed and the failed log-in attempts get reset to 0 in his guest record. If the locked out guest’s log-in attempt is unsuccessful after the time has passed, his guest record is once again locked for the same number of minutes as before, and the failed log-in attempts are increased by 1 in his guest record.

Additionally, the LockoutMessage key supports the variable {{glocktime}}, which is filled with whatever lock time is set in SysManager – e.g., Site Admin Panel > Guest Related Settings > LockoutMessage > value = Your account has been locked for {{glocktime}} minutes due to too many failed login attempts. Please contact us to correct this or try again after the time has elapsed.