none
account locked out

    Pregunta

  • Hi all,

    Why would a user on the network be prompted a number of times throughout the day for their credentials. The account also becomes locked out and needs unlocking.

    Thanks

    miércoles, 27 de junio de 2012 8:14

Respuestas

  • Hi,

    Since the account lockout issue could be caused by many factors, such as Programs, Service accounts, Low bad password threshold AD replication and Redundant credentials. At this time, in order to narrow down the cause of the account lockout issue. I suggest we try to enable Auditing policy, Netlogon Logging and Kerberos Logging to capture the information about the accounts that are being locked out.

    Enable Auditing at the Domain Level

    To view the Auditing policy settings, in the Group Policy MMC, double-click Computer Configuration, double-click Windows Settings, double-click Security Settings, double-click Local Policies, and then double-click Audit Policy. Enable auditing for the event types listed in the previous section.

    Enable Kerberos event logging on a computer

    1. Click Start, click Run, type regedit, and then press ENTER.
    2. Add the HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa\Kerberos\Parameters registry value to the registry key:
      • Registry value: LogLevel
      • Value type: REG_DWORD
      • Value data: 0x1

              If the Parameters registry key does not exist, create it.

    1. Close Registry Editor and restart the computer.

    Regarding enabling Netlogon logging, we could refer to the article Meinolf provided.

    For details about troubleshooting account lockout issue, please refer to the articles below.

    Troubleshooting Account Lockout

    http://technet.microsoft.com/en-us/library/cc773155(v=ws.10)

    Maintaining and Monitoring Account Lockout

    http://technet.microsoft.com/en-us/library/cc776964.aspx

    Regards,

    Andy


    jueves, 28 de junio de 2012 4:27

Todas las respuestas