From 0b97f31528571fd1c3d5b804288ad0d3fe5c97bb Mon Sep 17 00:00:00 2001
From: gerardma77 <115136373+gerardma77@users.noreply.github.com>
Date: Thu, 19 Sep 2024 19:08:32 +0000
Subject: [PATCH] backport of commit 17664bcfbe6a79853772757860ddcd370f767fe7

---
 website/content/api-docs/secret/ldap.mdx | 12 ++++++++++++
 1 file changed, 12 insertions(+)

diff --git a/website/content/api-docs/secret/ldap.mdx b/website/content/api-docs/secret/ldap.mdx
index 511d13194312..a2151ac719f6 100644
--- a/website/content/api-docs/secret/ldap.mdx
+++ b/website/content/api-docs/secret/ldap.mdx
@@ -170,6 +170,18 @@ The `static-role` endpoint configures Vault to manage the passwords of existing
 | `POST`   | `/ldap/static-role/:role_name` |
 | `DELETE` | `/ldap/static-role/:role_name` |
 
+<Note> 
+
+  Windows Servers hosting Active Directory include a 
+  `lifetime period of an old password` configuration setting that lets clients
+  authenticate with old passwords for a specified amount of time.
+
+  For more information, refer to the
+ [NTLM network authentication behavior](https://learn.microsoft.com/en-us/troubleshoot/windows-server/windows-security new-setting-modifies-ntlm-network-authentication)
+  guide by Microsoft.
+
+</Note>
+
 ### Parameters
 
 - `role_name` `(string: <required>)` – URL parameter specifying the name of the