How to use ldapmodify to lock an ldap user account on Solaris 10?

Does anyone know how to lock an ldap user account using ldapmodify?
This is an LDAP 6.2 client running Solaris 10.
I can see the pwdAccountLockedTime set to 000001010000Z after our threshold
of 5 invalid attempts has been met but I need a way to manually lock a user account.
I tried setting the pwdAccountLockedTime field but it is read only via ldapmodify.
Thanks for any help,
Mark
mmay5Asked:
Who is Participating?
 
mmay5Connect With a Mentor Author Commented:
Closing this. No solution found.
0
 
Brian UtterbackPrinciple Software EngineerCommented:
I think that you have the right field. The problem is that you cannot modify it with ldapmodify. Clearly the field is
writable under the correct circumstances, since your pam policy is already changing it remotely. Perhaps you are
not binding with the proper creds in the ldapmodify?
0
 
mmay5Author Commented:
Yes, that is the frustrating part. The field is correct and the ldap manager password should allow me access but doesn't. I was hoping someone had done this before.
0
 
Brian UtterbackPrinciple Software EngineerCommented:
What directory server are you using?
0
 
mmay5Author Commented:
We are running Directory Server 6.2
0
All Courses

From novice to tech pro — start learning today.