[cifs-protocol] Where is account lockout and password expiry described in the docs?

Sebastian Canevari Sebastian.Canevari at microsoft.com
Fri Oct 18 12:54:45 MDT 2013

Hi Andrew,

I've been looking into this and discussing with my colleagues.

I'd like to provide you with some pointers.

Outside of the protocols documents you can find these details (pay particular attention to the diagram):


But also, within the docs, you should take a look at:

MS-GPSB Account Lockout Policies


Different things happen depending on what policies are in effect so that should probably be your first stop.

Please let me know if this answers your question.

Thanks and regards,


Sebastian Canevari | Escalation Engineer | US-CSS Developer Support Core (DSC) Protocol Team
P +1 469 775 7849 
One Microsoft Way, 98052, Redmond, WA, USA http://support.microsoft.com

-----Original Message-----
From: cifs-protocol-bounces at cifs.org [mailto:cifs-protocol-bounces at cifs.org] On Behalf Of Andrew Bartlett
Sent: Thursday, October 17, 2013 3:32 PM
To: Sebastian Canevari
Cc: cifs-protocol at samba.org; Interoperability Documentation Help
Subject: Re: [cifs-protocol] Where is account lockout and password expiry described in the docs?

On Thu, 2013-10-17 at 15:51 +0000, Sebastian Canevari wrote:
> Hi Andrew,
> I'll be helping you out with this request.
> As soon as I have answers or questions I'll let you know.

Thanks.  Please also include the details for how this happens in Kerberos, not just for NTLM, as I strongly suspect the semantics have subtle differences, particularly in forwarding. 

Andrew Bartlett

Andrew Bartlett
Authentication Developer, Samba Team           http://samba.org
Samba Developer, Catalyst IT                   http://catalyst.net.nz

cifs-protocol mailing list
cifs-protocol at cifs.org

More information about the cifs-protocol mailing list