Shawn McKinney wrote:
Thanks. I would like to make one correction to my
earlier post that stated:
My question is, for situations when the user
account is locked, how do we reset the user account
programatically? I have found leaving the
pwdReset flag alone will not unlock the user's
account.
What I intended to say was leaving the pwdlockedTime
flag untouched will leave the user's account in a
locked state.
The current revision in CVS HEAD makes the pwdAccountLockedTime user
modifiable again (undoing the draft-9 change for now) and also deletes
the attribute automatically when the password is changed.
--
-- Howard Chu
Chief Architect, Symas Corp. http://www.symas.com
Director, Highland Sun http://highlandsun.com/hyc
OpenLDAP Core Team http://www.openldap.org/project/