Do the logs should the ldap error code? It might not match the AD code which is what is in the baseline lppe-configuration.xml file.
On 3/13/15 1:39 PM, Min wrote: > Hello, > > I am testing on password policy. I followed the instructions here: > http://jasig.github.io/cas/4.0.x/installation/LDAP-Authentication.html#ldap-password-policy-enforcement > > The expired password works well. It tells how many days left for password to > be expired. It also tells you when you password expired. > > But account locked doesn't show anything. If I trid three times with wrong > password, the account is locked in openLDAP. It has pwdAccountLockedTime set > for the account. Then CAS login won't redirect to Account Locked page. It > keeps showing login failed. > > I am using CAS 4.0.1 and openldap 2.4. > > Any help would be appreciated. > > Thanks, > Min > -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
