Note that pwdAccountLockedTime depends on pwdLockout

author Howard Chu <hyc@openldap.org>

Thu, 8 Oct 2009 23:52:34 +0000 (23:52 +0000)

committer Howard Chu <hyc@openldap.org>

Thu, 8 Oct 2009 23:52:34 +0000 (23:52 +0000)
author Howard Chu <hyc@openldap.org>
Thu, 8 Oct 2009 23:52:34 +0000 (23:52 +0000)
committer Howard Chu <hyc@openldap.org>
Thu, 8 Oct 2009 23:52:34 +0000 (23:52 +0000)
diff --git a/doc/man/man5/slapo-ppolicy.5 b/doc/man/man5/slapo-ppolicy.5

index 2bb99e4af79211fd0138558a11bb0d53013594d5..af96b8d76252d7b9b5127c14f5b582cf1a9dcc87 100644 (file)
--- a/doc/man/man5/slapo-ppolicy.5
+++ b/doc/man/man5/slapo-ppolicy.5
@@ -590,7 +590,10 @@ If the account has been locked, the password may no longer be used to
  authenticate the user to the directory.  If
  .B pwdAccountLockedTime   
  is set to 000001010000Z, the user's account has been permanently locked
-and may only be unlocked by an administrator.
+and may only be unlocked by an administrator. Note that account locking
+only takes effect when the
+.B pwdLockout
+password policy attribute is set to "TRUE".
  .LP
  .RS 4
  (  1.3.6.1.4.1.42.2.27.8.1.17
author	Howard Chu <hyc@openldap.org>
	Thu, 8 Oct 2009 23:52:34 +0000 (23:52 +0000)
committer	Howard Chu <hyc@openldap.org>
	Thu, 8 Oct 2009 23:52:34 +0000 (23:52 +0000)