Not sure if I sent this right the first time....
I had posted this on centos forum here but no help :( https://www.centos.org/forums/viewtopic.php?f=48&t=65041&hilit=authc...
Basic background: 3 openldap servers with multimaster replication and ppolicy pwdMaxFailure: 6 . When i try to authenticate to the linux box authconfig authenticates to all 3 master servers which return 3 failures, which give you 3 pwdFailureTime attributes for the account. So after typing the password incorrectly twice, the user get's locked out.
Trying to understand why this is happening. When configured another clean box i dont see this behavior (one pwdFailureTime per incorrect password attempt). I've also reinstalled related packages but no change. The behavior is seen on all three master ldap servers.
Please see the link for details
Any input is appreciated.
thank you, -dave