From the MS How-To http://msdn2.microsoft.com/en-us/library/ms998360.aspx, I know that when the membership provider locks an account, it's not actually locked out with AD. Without using the membership provider's UnlockUser() method, how do I unlock an account?
My ultimate goal is to use the membership provider in my web app to authenticate against AD. I don't want my web app to be able to unlock users, or allow them to change passwords. I'd like to control the lockout parameters (ie. 5 invalid pwd attempts within 10 mins). In the event of a lockout, I'd like the account to automatically unlock after a specified period of time (ie. 30 minutes). From what I understand, the numbers I just used as examples are the defaults, however ...
My web.config file looks like this:
type="System.Web.Security.ActiveDirectoryMembershipProvider, System.Web, Version=22.214.171.124, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a"
View Complete Post