Which feature aims to protect NSM accounts from unauthorized access?

To effectively protect NSM accounts from unauthorized access, implementing an account lockout feature is critical. This feature is designed to disable access to an account after a specified number of failed login attempts. By enforcing a limit on the number of allowed incorrect password entries, it significantly reduces the risk of brute force attacks, where an attacker attempts to gain access by repeatedly guessing passwords. Once an account is locked, it may require administrative intervention to unlock it or may involve additional steps for the legitimate user to recover access, thereby adding an extra layer of security.

Options such as two-factor authentication, session timeout, or IP whitelisting also contribute to account security in unique ways. However, they function in different contexts. Two-factor authentication adds an extra verification step beyond just a password, session timeout helps to mitigate risks from unattended sessions, and IP whitelisting restricts access to known and trusted IP addresses. While all these features enhance security, the account lockout feature specifically addresses the direct risk of repetitive unauthorized access attempts on an account, making it a crucial defense mechanism against unauthorized access.