Hello,
You can use the "Account Blocking" features of OpenOTP to block the account after X failed login attempts.
WebADM GUI > Application > MFA Authentication Server > CONFIGURE > Account Blocking
Regardless of which factors (LDAP, OTP, LDAP+OTP...) need to be validated, the account will be blocked at the WebADM/OpenOTP level after x failures.
Tu unblock it, you have to go on the account through WebADM GUI > USER_ACCOUNT > MFA Authentication Server > Unblock account.
Regards