When AD is using for authentication users, many fields in user's preferences under menu "authentication options" populated with user's email from AD. But by default, user can modify these fields. For example, if administrator enforce Email Temporary Pin Code for all users, user have ability to change corporate email on any external system, which can lead to possible security breach. Will be very useful feature to allow administrator to lock some fields in user's preferences under menu "authentication options" like "Email Address", "Radius Username", "Duo Username" - all these field populated from AD when user first time connected to Passwordstate.
