This includes:

  • If a user has forgotten their password
  • If the account has been locked after too many failed authentication attempts
  • If the account has been locked because it has been too long since the user last authenticated
  • If the account has been locked because the user failed to authenticate in a timely manner after an administrative reset
  • If the account has been locked because the user attempted to bind with a password that failed validation
  • If the user’s password has expired

An administrative password reset does not restore access to an account under the following circumstances:

  • If the account has been administratively disabled
  • If the account has an activation time that is in the future

    If the account has an expiration time, not to be confused with the password expiration time, which is in the past