Can you add to the APP SECURITY SETTINGS - FAILED LOGINS
This will check when a user fails to log in, how many times they’ve tried, and if that exceeds the options set for the App, the user will become locked out for a specified period of time. Additional options would be available to allow users to unlock themselves by resetting their own password and in addition, an email can be sent to the user warning them of this.