The PingDirectory server provides tools to enter and leave lockdown mode if the server requires a security lockdown.
In lockdown mode, only users with the lockdown-mode
privilege can
perform operations Users who do not have the privilege are rejected. By default, root
users have this privilege. You can give other administrators this privilege. Users with
this privilege can configure lockdown mode as a recurring task.
Some configuration problems can lead to inadvertent exposure of sensitive information, such as an access control rule that cannot be properly parsed, and cause the server to place itself in lockdown mode. This ensures that an administrator can manually correct the problem. Lockdown mode does not persist across restarts.