locking user’s home directory.

Server Setup: 10.4.8: Magic Triangle setup: Binded to LDAP and is OD Master. Home directory stored on XSAN served via AFP. MCX settings enforced as well. Quotas (500mb soft/768mb hard) set through Xsan. Users can log in to workstations without any problem. The problem in short is that we would like to lock user out but it's bypassing MCX. Now the problem here is that in Panther we just change the ownership of the home directory and the locked user will be able to log in but nothing appears. In Tiger, if i move the locked user's directory, I am able to authenticate into workstation and get a error "home folder have been moved or deleted" but am still able to use computer to some degree. Changing the rw permissions on the home directory also bypasses MCX settings and lets "locked" user into workstation with errors appearing here and there. We also are seeing that if a user does not have home directory he or she is still able to log in. Maybe I missed something when I set the lab up to Tiger because when we were on Panther a user is unable to log in if he or she doesn't have a home directory also when we change the ownership of the home directory a user is still able to log in but finder and dock were empty. Ultimately, what we want is to lock a user's account so that the user would have to contact IT staff in order to gain access again. Thank you Jason K