Is it possible to have the account lockout status not sync between AD DS and AD LDS when using proxy authentication?
We have a scenario where an application will use LDS as an authentication store. Some users will be contained in the LDS database and others will be stored in AD and use proxy authentication. We don't want the user to be locked out of the application because they've entered their password wrong numerous times, even though they me be locked out of AD DS due to our domain password lockout policy.
Thanks,
Mr Dizzle