Thanks for response... Yes, I read it, it was mentioned there above...
However, it didn't work for me well. Originally I had: ads-pwdLockout: TRUE ads-pwdLockoutDuration: 0 Which is default. When some users locked-out themselves, I stopped servers, set ads-pwdLockoutDuration = 5, and started servers (just to avoid brute force login attempts) However accounts, which were locked during TRUE/0 configuration, didn't unlock... Does duration apply only to newly locked accounts, or is it some bug? When I set ads-pwdLockout to FALSE, locked accounts were activated... Thanks. Slavomir Kocka On Jun 28, 2013, at 15:19 , Emmanuel Lécharny <[email protected]> wrote: > Le 6/28/13 3:04 PM, Slavomir Kocka a écrit : >> Hi, >> >> I found out that there is pwdLockoutDuration flag set to 0... >> In what units is actually this value? Nothing is mentioned in >> documentation... Is it seconds/minutes/milis? > > It is in seconds. > > I will update the > http://directory.apache.org/apacheds/advanced-ug/4.3-password-policy.html > page. > > -- > Regards, > Cordialement, > Emmanuel Lécharny > www.iktek.com >
