Overview#The Last Login Time feature is a mechanism in most LDAP Server Implementations where tracking of the time that the user last authenticated to the server using an LDAP Bind Operation. The Last Login Time may be written to a specified attribute with a user-defined format.
Note that in many servers, it may be the Last Login Time format to contain only the date but not the time of day. If this format is used, then the value will be only updated once per day, thereby reducing the potential impact on performance for users that authenticate several times throughout the day.
The last login time may be maintained for informational purposes, but it can also be used to enable the idle account lockout feature.