Adding AD lifetime period of an old password note to Vault LDAP secre…

…ts Engine API Documentation (#28429) * adding_OldPasswordAllowedPeriod_waring * Updated note for AD password * Update website/content/api-docs/secret/ldap.mdx Co-authored-by: Sarah Chavis <[email protected]> --------- Co-authored-by: Equus quagga <[email protected]> Co-authored-by: Sarah Chavis <[email protected]>
hashicorp · Sep 19, 2024 · 17664bc · 17664bc
1 parent 2e6944d
commit 17664bc
Showing 1 changed file with 12 additions and 0 deletions.
diff --git a/website/content/api-docs/secret/ldap.mdx b/website/content/api-docs/secret/ldap.mdx
@@ -170,6 +170,18 @@ The `static-role` endpoint configures Vault to manage the passwords of existing
 | `POST`   | `/ldap/static-role/:role_name` |
 | `DELETE` | `/ldap/static-role/:role_name` |
 
+<Note> 
+
+  Windows Servers hosting Active Directory include a 
+  `lifetime period of an old password` configuration setting that lets clients
+  authenticate with old passwords for a specified amount of time.
+
+  For more information, refer to the
+ [NTLM network authentication behavior](https://learn.microsoft.com/en-us/troubleshoot/windows-server/windows-security new-setting-modifies-ntlm-network-authentication)
+  guide by Microsoft.
+
+</Note>
+
 ### Parameters
 
 - `role_name` `(string: <required>)` – URL parameter specifying the name of the