Hello @gulden and sorry for the delayed answer,
it has been quite a stressful week…
It’s about THIS howto:
In combination (as far as I could understand) with the automated server password change, it occasionally triggers the system to lock itself out.
This happens overnight and of course the next morning you run into successively bigger and bigger problems as you can only do work to fix the lockouts (LDAP etc.) as a root user in the shell.
When we first stumbled upon this, the research was rather difficult.
By means of THIS GUIDE, one solves the problem permanently, but I guess the point would be if the lockouts could be limited to user accounts instead of covering all accounts including system accounts?
Best regards,
TP