Django authentication security check against LDAP

[Uzair Tariq]

While studying the Authentication Views in Django I came across some of the build in views including password reset view. I got hang of its basic working mechanism while reading the documentation I encountered the line promoting the use of set_unusable_password() in Djagno authentication against LDAP networks. I googled and found some of the useful links defining LDAP networks e.g. but I was not able to understand the possible vulnerabilities to the LDAP authentication system that may arise when the set_unusable_password flag is not set and the system is requested a password change request. Basically what I am trying to ask is what kind of misuse can occur in case of LDAP authentication and set_unusable_function not being used as said in the following context of the password reset view in Django. Can anyone please kindly highlight some of the misuses I will be really grateful. The Link to the topic is here and Method Link. Thanks in Advance.