Hi! I have environment with samba 4 as ADDC on Ubuntu Server and on Debian 11 users with Pam Wimbind configured and working. In Samna4 the 3 month password validity policy works fine, but when the user does not change the password, login via ssh in Debian 11 still works with the old password, or it makes the idea of changing the password totally useless. Other systems with login via ldap, like Webmail Zimbra, or apache with htacces with ldap, do not allow login with expired password, only ssh+winbind(pam). How to make ssh+winbind(pam) reset the expired password? Regards; Att