Hello All, Is there a way to lock the user principal in case of unsuccessful logins ? If yes what is the way to unlock the user ? When issuing getprinc one of the fields is "Failed password attempts:" Is there a way to use this field ? Is this mechanism relates to Kerberos or to LDAP ? Thanks, Ido Levy