You may set up the account lockout settings in System -> Subsystems -> userManagementSubsystem
This is the current default;
If you have an applicationkey associated with an administrator, you may reset your password with a rest call via the appkey
Thank you, I was able to sign-in after the 15 minute lock-out period expired.
My feature request still applies, this lock-out time period should be made visible to the user so they aren't searching for a different password when the one they trying is correct. The SecurityLog.log file is also no help, it logs the same message for incorrect password as it does for a correct password entered during the timed lock-out period.