On Tue, 2024-08-27 at 12:49 +0300, Alexander Bokovoy via FreeIPA-users wrote: > Did you look into man page faillock.conf(5)? > > local_users_only > Only track failed user authentications attempts for local > users in /etc/passwd and ignore centralized (AD, IdM, > LDAP, > etc.) users. The faillock(8) command will also no longer > track user failed authentication attempts. Enabling this > option will prevent a double-lockout scenario where a > user is > locked out locally and in the centralized mechanism.
I did not read the man page. > You don't need to modify PAM configuration for changing these > settings, > as they can be updated independently in /etc/security/faillock.conf I did know about this. But, since I didn't read the man page... Thank you for pointing out my failures! :D I do appreciate it. -- Ranbir -- _______________________________________________ FreeIPA-users mailing list -- [email protected] To unsubscribe send an email to [email protected] Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedorahosted.org/archives/list/[email protected] Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
