Indicates that users should be kept from attempting to log in once they are identified as an intruder.
For help in understanding the attribute definition template, see Reading NDS Attribute Type Definitions.
Monitoring attempts of users to log in can occur without actually enforcing any restrictions on logging in. If this attribute is set to TRUE, it indicates that users should be locked out once the limits of tolerance have been exceeded. Those tolerable limits are designated using other attribute values.
For LDAP clients to access this attribute, the LDAP server must be configured to map the attribute to a name without spaces or colons.