Domains / Security and Compliance/ Domain Event

MFA Challenge Failed

Emitted when a user fails a multi-factor authentication challenge, incrementing the failed attempt counter and potentially triggering an account lockout.

Domain Event Application active

MFA Challenge Failed is a security-critical signal. The audit trail records every failed attempt with originating IP and device fingerprint. The access control layer evaluates the failure count against lockout thresholds and can trigger an automatic account lock for brute-force prevention.

Relationships

Serves outgoing 3
Target Element Element Type
Auth Token Issue API Endpoint
Audit Event Ingest API Endpoint
Access Control API API Endpoint

Architecture Context

Diagrams

Not yet referenced in any diagram

Properties

Type Domain Event
Layer Application
Domain Security and Compliance
Status active
Owner Security Team

Additional Metadata

Event Format CloudEvents
Schema Registry https://schema-registry.internal/security/mfa-challenge-failed
Archimate Type application-event
Ddd Type Domain Event

Meta Model

Business
Organization
Application current
Technology

Actions