Solved

To lock user account (Domain user account) while Offline on 5 unsuccessful tries

Posted on 2006-06-15
3
251 Views
Last Modified: 2010-04-13
We know that as per GPO policies a Domain account can be locked out upon unsuccessful tries while being on the network and connected to domain.

But imagine a scenario when a laptop gets stolen... the theif wants to access the data on the laptop... he knows the login...

currently windows allows unlimited tries to guess user password (if login is known) and doesnot lock the account (as it does while being on the network and connected to domain)

My question is.....
Is there a way we can lock a user account upon unsuccessful tries (locally)?
is there a third party tool which does that?

please do reply... as k question ... this is quiete urgent

Magicianspell

0
Comment
Question by:magicianspell
3 Comments
 
LVL 13

Accepted Solution

by:
Kini pradeep earned 200 total points
ID: 16913929
yes there is:
if its a win xp m/c then setup a local password policy, now this policy can only assign the number of allowed invalid attempts to lock the account.
i did that on a standalone machine and it did lock the account, i also added this user to the local administrators group, and still am able to lock the account.
now the problem is the administrator account cannot be locked, so if the person is trying to guess the password with the administartor username then of course he can try as many times as he wants, what you could do here is rename the admin account through the group policy again it under security settings.
can do it either from the mmc, load group policy, or gpedit.msc
now these are for local accounts only.

0

Featured Post

How to run any project with ease

Manage projects of all sizes how you want. Great for personal to-do lists, project milestones, team priorities and launch plans.
- Combine task lists, docs, spreadsheets, and chat in one
- View and edit from mobile/offline
- Cut down on emails

Join & Write a Comment

NTFS file system has been developed by Microsoft that is widely used by Windows NT operating system and its advanced versions. It is the mostly used over FAT file system as it provides superior features like reliability, security, storage, efficienc…
Get to know the ins and outs of building a web-based ERP system for your enterprise. Development timeline, technology, and costs outlined.
Internet Business Fax to Email Made Easy - With eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, fr…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

744 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

16 Experts available now in Live!

Get 1:1 Help Now