We have successfully used the External authentication to prevent a user from a successful login after a certain number of failed password attempts.
We return
“reject User Locked\n”
The issue is that the “User Locked” does not appear in the SSH or Rest interface so that we can properly inform the user of the account status and allow them to stop retrying password attempts.
Is there anyway to inform the user of their “Locked” status?