5 May
2014
5 May
'14
7:38 p.m.
From: Michael Ströder Sent: Saturday, May 03, 2014 4:22 AM
BTW: AFAIK write operations to 'pwdFailureTime' are normally not replicated.
Hmm, in my initial testing, it seemed to be. Account lockout wouldn't be nearly as useful if the failures were not synchronized across all of the servers and the settings were applied separately on each one. (Well, arguably account lockout is not useful in general :), but as a checkbox on an audit form it would be less useful if the failures weren't synchronized).