Jim Kinney via FreeIPA-users wrote:<br>It seems if valid ssh keys exist, the expired account status doesn't<br>block login with ssh keys. Any operation that touches a password is<br>blocking.<br>Is there a pam setting in sshd that needs tweaking to deny access if<br>account is expired?<br><br>You may want to cross post this on sssd-users.<br><br>rob<br>-- <br>Computers amplify human error<br>Super computers are really cool