| Additionally, to reduce risk and vulnerability, the following
                                security measures now apply for CIE directory users:  Users must change their passwords after their first login. If a user fails to log in successfully after five attempts, the
                                    user's account is locked for five minutes or until it is
                                    unlocked by an administrator. The time that the account is
                                    locked is based on the number of unsuccessful attempts; for
                                    example, after 20 failed attempts, the account is locked for 20
                                    minutes or until it is unlocked by an administrator. If a user fails to log in successfully after 24 attempts, the
                                    user's account is disabled until it is enabled by an
                                    administrator. 
 |