We run Zimbra 5.0.17 and use Active Directory for backend auth. Our users have various types of mobile devices including iPhone, Windows and Blackberry. Our AD password policy requires users to change every N days and this always causes issues that end up with locked out accounts. A user will get prompted to change their AD password and once it's changed they can't change their password fast enough on their phone to stop their account from being locked out. I would like to raise the number of failed auth attempts in each CoS but is this possible via the CLI for speed and so that all CoS settings don't get re-applied? We've already been burned by adjusting the quota on a CoS and having all accounts be affected... major problem.

Thanks,
Clay