Take a look at pwdReset TRUE

On Jul 11, 2013, at 11:39 AM, "jeevan kc" <jeev_biz@hotmail.com> wrote:

With the Openldap password policy I was able to lock the account after a certain number of failed login attempts. When I reset the password, the user can login whenever. What I want to ask is, is there a way to make the password expire if the user doesn't login within lets say 24 hours after the password has been reset? Thank you!