We may have to implement stronger authentication controls on our servers. Specifically, account lock out after a number of failed attempts, and password expiry. Is DSS v6 capable of these or would the best approach be to employ directory services?
Thanks Todd. This would mean deploying a new AD server, something which we have no experience of, and it would cost us. O don't suppose there's any chance we could use Apple's Open Directory? Are there any third party plugin's around for this?
We support OpenLDAP and Active Directory, but NOT Apple's Open Directory. For OpenLDAP, please see the following knowledge base article: http://www.kb.open-e.com/entry/852/