So, up til SLES12sp3, we could create an account on box which was configured for ldap authentication, and when we locked the account they could still
ssh into the box. Now with SLES12sp4 that not longer appears to be the case. If I lock and account it cannot login at all. If I set a junk password ldap
logins work again. Any suggestions on how to not set a local password, but still allow ldap logins?
2019-03-15T13:50:41.961114-04:00 box2 sshd: error: PAM: User account has expired for user from 184.108.40.206 ?
If I set an expire date in the future I get the same message, I though a 0 for expire date was a never expire??