More visibility to admins: Failed Logins data and revamped Dashboards

Every access attempt to your network is significant—and quickly detecting unusual patterns can be critical for protecting your organization’s sensitive data. While occasional failed logins are normal, a sudden surge in login attempts can indicate brute-force attacks, signaling that someone may be trying to gain unauthorized access.

At NordLayer, we're committed to protecting what matters most to your business while keeping security simple to manage. That’s why we continue to improve the Control Panel, which gives IT teams greater visibility and monitoring capabilities. These updates are part of our mission to provide layered, proactive protection without disrupting daily operations, helping you stay ahead of modern risks with confidence.

Instant visibility with the Failed Logins data

We're introducing powerful new Failed Logins data within your Control Panel's Dashboards section. It provides an overview of suspicious or unauthorized access attempts across your NordLayer Control Panel, apps, and Browser Extension—whether users log in via SSO or email/password, with or without 2FA.

Now, you'll find a dedicated Failed Logins widget and graph that offers visibility into:

• The number of attempts to log in within 24 hours
• Trends that might indicate a targeted brute force attack
• Anomalies that require your immediate attention

This instant insight helps you spot potential threats early, allowing you to stay in control and act before issues escalate. It's a proactive approach to mitigating security risks.

Activity section upgrade—detailed Failed Logins log

To complement the Dashboards feature, we've also improved the Activity section. Now, a detailed Failed Logins log is available, providing 24-hour data and granular context for each unsuccessful access attempt.

This comprehensive log equips IT admins with crucial information, including:

• Name and email—who attempted to log in
• Exact date and time—when the attempt occurred
• Device IP address—the location of the attempt
• Device or browser Information—what was used
• Login method—SSO or email and password
• Failure reason—which part of the login process failed
• Number of failed attempts (per session)—to identify persistent efforts
• Role (owner, member, etc.)—context about the user's permissions
• Status of the user—active, invited, etc

This level of visibility empowers your team to react faster to anomalies, investigate suspicious patterns thoroughly, and strengthens your overall threat response strategy with confidence.

By analyzing these patterns, admins can detect anomalies in user behavior, which may indicate brute force attacks, compromised accounts, or insider threats.

Dashboards overview

Beyond the new Failed Logins data, our redesigned Dashboards experience makes your security and usage insights clearer and more actionable.

Your NordLayer Dashboards continue to offer a wealth of valuable information, including:

• User activity. Monitor who is connecting, when, and from where.
• Throughput usage. Track data consumption across your network.
• Server load. Keep an eye on performance and optimize resource allocation.
• Connection trends. Understand network patterns and peak usage times.

These insights are vital for optimizing network performance, managing user access, and maintaining a robust security posture, all from a centralized control point.

Usage vs. Security categories

We're restructuring the dashboard to improve clarity and streamline your experience. You'll now find insights clearly grouped under two new, intuitive categories: Usage and Security.

Usage

This section provides an overview of network activity, throughput consumption, and user engagement, helping you manage resources efficiently. You'll still find familiar visualizations, including:

• Graphs for sessions, protocols, server bandwidth
• Donut charts for device OS distribution, browser type distribution, and NordLayer client versions

Security

This new dedicated section consolidates all critical security-related data, including the new Failed Logins data, threat alerts, compliance-related metrics, and 2FA enablement percentages. This clear separation ensures that your most vital security information is easily accessible, allowing for rapid assessment and decision-making.

The new structure not only simplifies navigation but also makes it easier to focus on specific areas of your network's performance and security health.

Why it matters

These updates are more than just new additions; they're about giving IT admins and organization owners better visibility and monitoring capabilities for proactive security and streamlined operations.

1. Monitor failed logins to instantly spot potential unauthorized access attempts or brute-force attacks, helping mitigate security risks before they escalate.
2. Gain deeper insights into user behavior patterns to detect anomalies indicating compromised accounts or insider threats.
3. Enforce stricter access controls and align with Zero Trust principles by continually verifying access based on failed login data. This allows you to quickly implement additional authentication measures or adjust permissions when suspicious activity is detected.
4. When a spike in failed logins occurs, quickly investigate, block suspicious IPs, or temporarily suspend accounts, reducing response time and minimizing exposure.
5. Contribute to audit trails with detailed logs of failed login attempts for compliance with regulations like GDPR and HIPAA, fostering accountability and demonstrating due diligence.
6. Highlight areas where users might need additional training on password management or where access policies require refinement, such as implementing MFA for frequent failures.

By providing clear, actionable intelligence, NordLayer helps your organization detect threats early, stay in control, and act before issues escalate into significant incidents.

Final thoughts

The new Failed Logins data and the redesigned Dashboards experience represent a significant step forward in improving your cybersecurity with NordLayer. These tools will give you greater peace of mind and more effective control over your network's security, empowering you to manage complex challenges with greater efficiency.

We encourage you to log into your Control Panel today, explore the new Dashboards categories, and use the data to strengthen your threat detection and response strategies.

Your proactive security journey just got a powerful upgrade.