[10:42:47 CDT(-0500)] <dd> hello. we have CAS setup to authenticate against active directory over LDAP. we are having an issue where some users are getting multiple failed login attempts and it turns out that their windows password has expired.
[10:42:58 CDT(-0500)] <dd> is there any way to detect this in CAS and display a message?