Thanks Ralf, my bad.
But do you think if I set Disable Inactive After (Days) to 0 would stop users being deactivated so I can prepare my upgrade to 3.4.1?
All issues in my environment is related to user got disabled due to inactivity. All in my filters show PAM-CMN-0903: This account is deactivated. See your CA PAM Administrator.