I have detected that with samba 4.4.5 Account lockout threshold (attempts) is not working correctly.
If you configure Account lockout threshold (attempts): 5, and then you try to login with incorrect password, It seems that badPwdCount is not correct, this attribute increase with every incorrect password 2, from 0, 2 ,4 and 5 and then account is locked at third attempt and not 5.
then If you configure 10, account is locked at 5 attempt (0, 2, 4, 6, 8, 10)
Samba used is 4.4.5 and compiled from sources
Anybody can help?
In my recent tests on bug #14054 I that it works fine in current releases
Confirmed with 4.10.7 and samba-tool domain passwordsettings set --account-lockout-threshold=5
now conts correctly, with 4.4.5 was failing and now works