How to unlock an account disabled with pam_lastlog

The system is set up to disable an account that has been inactive for X number of days using the pam_lastlog module. Once the user is in that situation how can the root user re-enable the users account. I looked at faillock, pam_tally2, and passwd -u. Nothing seems to work, the user is still prevented from accessing the system. This is on a RHEL 6.7 system.