Matt . wrote: > Hi Guys, > > I'm having an issue that a user which I use for the API is getting > locked out from time to time. > > I have created a specific password policy for this user with: > > Lockout duration (seconds) 0 > > But this doesn't help much. > > Anyone an idea how I can make sure a user is not locked out in any way > by lots of logins or tries, etc and be able to test it functions > allright ?
Setting maxfail to 0 should do it. As for testing, be creative, but be sure to test both LDAP bind and kinit. rob -- Manage your subscription for the Freeipa-users mailing list: https://www.redhat.com/mailman/listinfo/freeipa-users Go to http://freeipa.org for more info on the project