Locking and Unlocking User Accounts
You can manually lock user accounts and you can unlock accounts that have been locked manually or by password policy events.
|
By default user accounts are locked for 15 minutes after five unsuccessful login attempts.
|
To lock the account of a specific user, use a command similar to the following:
manage-account set-account-is-disabled
--targetDN "uid=<user-DN>"
--operationValue "true" --hostname "localhost"
--port "4444" --trustAll --bindDN "cn=manager" --bindPassword admin
Replace <user-DN> with the full distinguished name of the user.
To unlock the account that has been locked, use a command similar to the following:
manage-account clear-account-is-disabled
--targetDN <user-DN>"
--hostname "localhost" --port "4444" --trustAll
--bindDN "cn=manager" --bindPassword admin
Replace <user-DN> with the DN of the user.