I'm trying to pass an intruder lockout from our identity vault to OID. The closest attribute that I can find in OID is pwdaccountlockedtime but when I try modifying that attribute I get an error:

ldap_modify: Constraint violation (19)
additional info: Admin Domain restricts modification of Attribute: pwdaccountlockedtime .

So the question is, is there another attribute that I could flag in OID to trigger the intruder lockout or can I modify OID to allow me to modify that attribute? Or, if someone has a better idea to pass the intruder lockout from edirectory to OID I'm more than willing to listen. TIA!