User
2006-10-27 22:27:15 UTC
I am trying to lock an account in Active Directory using LDAP (Java)
API. I try to set the attribute userAccountControl to 528 (512 + 16).
It takes the change but when I query the user object immediately it is
set to 512.
I am assuming I will have to change other attributes in conjunction
with userAccountControl. I tried to set the attribute "lockoutTime" but
I can't change it.
Any ideas on locking the Active Directory account programatically. I
was able to disable (514) though. Just can't lock.
API. I try to set the attribute userAccountControl to 528 (512 + 16).
It takes the change but when I query the user object immediately it is
set to 512.
I am assuming I will have to change other attributes in conjunction
with userAccountControl. I tried to set the attribute "lockoutTime" but
I can't change it.
Any ideas on locking the Active Directory account programatically. I
was able to disable (514) though. Just can't lock.