Unity connection 7.1.3. All users are imported via LDAP from MS AD. When the AD account is set to "locked" when user is
on 5 day sabitical, and then the AD account is returned to normal 5 days later, then Unity user admin account no longer is able to login as admin user , even tho the account is still active, and the roles are still defined. We have to remove roles, remove user, then re-import user with user-template to allow the login to work again.
Why does this occur ? It seems something with LDAP makes the account no longer useable and must be deleted and re-added.