From 36f86d76c441d5cfd090f637ca68388f5353c646 Mon Sep 17 00:00:00 2001
From: Michael Boelen <michael.boelen@cisofy.com>
Date: Tue, 23 Jun 2020 13:57:14 +0200
Subject: [PATCH] [AUTH-9229] added option to look for LOCKED accounts

---
 include/tests_authentication | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/include/tests_authentication b/include/tests_authentication
index bf8cabe8..49ba49db 100644
--- a/include/tests_authentication
+++ b/include/tests_authentication
@@ -293,8 +293,8 @@
         if [ -e ${ROOTDIR}etc/shadow ]; then SHADOW="${ROOTDIR}etc/shadow"; fi
         FIND=$(${CAT_BINARY} ${ROOTDIR}etc/passwd ${SHADOW} | ${AWKBINARY} -F : '{print length($2) ":" $2 }' | while read METHOD; do
             case ${METHOD} in
-                1:\* | 1:x | 0: | *:!*)
-                    # disabled | shadowed | no password | locked account
+                1:\* | 1:x | 0: | *:!* | *LOCK*)
+                    # disabled | shadowed | no password | locked account (can be literal *LOCK* or something like LOCKED)
                     ;;
                 *:\$5\$*| *:\$6\$*)
                     # sha256crypt | sha512crypt: check number of rounds, should be >5000