There are several situations where not all GroupWise accounts are associated with any directory counterparts. For instance resources. A question is whether you can login into such accounts when a security settings on PO is set into LDAP authentication.
In GW2014 we do not rely much on a need to have GroupWise accounts associated with any directory objects. If a security settings on PO is set to LDAP authentication, a POA checks a user object whether there are any information about directory and if present then provided credentials are passed to a LDAP server which validates user login.
If no directory attributes are present in a user GroupWise object we try to check a user GroupWise password and if there is a match with provided credentials, you are allowed to proceed with a login and can see a contents of the mailbox.
In other words, if a GroupWise mailbox has set some password set, you can login still despite of LDAP authentication security settings and without having any directory user object association.