add dynamic ip block for the login page, against brute force logins
we authenticate through Active Directory, but our public login page is sometimes attacked by brute force attempts, so some AD accounts are locked.
It would be great if ip could be banned after some bad attempts.
Definitely important otherwise the SC login page basically open up a potential DoS attack surface when combined with AD.