diff --git a/server/api/controllers/access-tokens/create.js b/server/api/controllers/access-tokens/create.js
index 41a548cf..cecc2585 100755
--- a/server/api/controllers/access-tokens/create.js
+++ b/server/api/controllers/access-tokens/create.js
@@ -63,7 +63,7 @@ module.exports = {
       sails.log.warn(
         `Invalid email or username: "${inputs.emailOrUsername}"! (IP: ${remoteAddress})`,
       );
-      if (sails.config.custom.enableVerboseOnLogin) {
+      if (!sails.config.custom.enableVerboseOnLogin) {
         throw Errors.INVALID_CREDENTIALS;
       }
       throw Errors.INVALID_EMAIL_OR_USERNAME;
@@ -75,7 +75,7 @@ module.exports = {
 
     if (!bcrypt.compareSync(inputs.password, user.password)) {
       sails.log.warn(`Invalid password! (IP: ${remoteAddress})`);
-      if (sails.config.custom.enableVerboseOnLogin) {
+      if (!sails.config.custom.enableVerboseOnLogin) {
         throw Errors.INVALID_CREDENTIALS;
       }
       throw Errors.INVALID_PASSWORD;
diff --git a/server/config/custom.js b/server/config/custom.js
index e1c39986..2bb8a03e 100644
--- a/server/config/custom.js
+++ b/server/config/custom.js
@@ -36,7 +36,7 @@ module.exports.custom = {
 
   allowAllToCreateProjects: process.env.ALLOW_ALL_TO_CREATE_PROJECTS === 'true',
 
-  enableVerboseOnLogin: process.env.ENABLE_VERBOSE_ON_LOGIN ? process.env.ENABLE_VERBOSE_ON_LOGIN === 'true' : true,
+  enableVerboseOnLogin: process.env.ENABLE_VERBOSE_ON_LOGIN ? process.env.ENABLE_VERBOSE_ON_LOGIN === 'true' : false,
 
   oidcIssuer: process.env.OIDC_ISSUER,
   oidcClientId: process.env.OIDC_CLIENT_ID,