none
Locked Out Account RRS feed

  • Question

  • Hi,

    My question is when user is locked out and if i ran active sync for the same user. Then user is getting unlocked. So i want to know why this happening.

    Thnaks,

    Gopal

    Wednesday, November 13, 2013 4:32 AM

Answers

  • Hi Gopal,

    Based on my research, when a user’s password has been changed, AD replication will take some time to replicate the new password to all the computers and devices in the domain.

    In your case, the user’s new password hasn’t been delivered to your device, programs and service on the device will use the old credentials to logon to the domain. An authentication process takes place on a Domain Controller where the new password has replaced the old one, so this kind of logon attempts will fail. When the number of logon failures exceeds account lockout threshold, the user account gets locked out.

    As you mentioned, the user account unlocked after you ran Active Sync for this user. The time till user account unlocks depends on Account lockout duration, which is defined by domain account lockout policy. Active Sync can sync user’s password, after successfully ran Active Sync, Logon attempts will be successful because the user uses new password to logon.

    More information for you:

    Account lockout duration

    http://technet.microsoft.com/en-us/library/hh994569.aspx

    Troubleshooting Account Lockout

    http://technet.microsoft.com/en-us/library/cc773155(v=WS.10).aspx

    If you want to know more about Active Sync, please refer to the following forum:

    Exchange Previous Versions – Mobility and ActiveSync Forum

    http://social.technet.microsoft.com/Forums/exchange/en-US/home?forum=exchangesvrmobilitylegacy&filter=alltypes&sort=lastpostdesc

    I hope this helps.

    Best Regards,

    Amy Wang

    Thursday, November 14, 2013 3:25 AM
    Moderator