Hey there,
By default, if you user fails to log into Confluence 3 times, the CAPTCHA appears automatically on the login screen.
Kind regards,
Guilherme Viana
Atlassian Support
Confluence doesn't have that built-in - the closest it has is "captcha" which you should be able to enable in the user configuration, and is only used for account creation and repeated failed logins.
If you feel the need to add this for every login (please, don't - it frustrates valid users and adds no security), you will need to code for it.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
I agree, captchas are just friction not real security. Google "jira two factor authentication" and start somewhere such as https://answers.atlassian.com/questions/242660/2-factor-authentication-for-jira for a better direction
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.