• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 262
  • Last Modified:

To lock user account (Domain user account) while Offline on 5 unsuccessful tries

We know that as per GPO policies a Domain account can be locked out upon unsuccessful tries while being on the network and connected to domain.

But imagine a scenario when a laptop gets stolen... the theif wants to access the data on the laptop... he knows the login...

currently windows allows unlimited tries to guess user password (if login is known) and doesnot lock the account (as it does while being on the network and connected to domain)

My question is.....
Is there a way we can lock a user account upon unsuccessful tries (locally)?
is there a third party tool which does that?

please do reply... as k question ... this is quiete urgent

Magicianspell

0
magicianspell
Asked:
magicianspell
1 Solution
 
Kini pradeepPrincipal Cloud and security consultantCommented:
yes there is:
if its a win xp m/c then setup a local password policy, now this policy can only assign the number of allowed invalid attempts to lock the account.
i did that on a standalone machine and it did lock the account, i also added this user to the local administrators group, and still am able to lock the account.
now the problem is the administrator account cannot be locked, so if the person is trying to guess the password with the administartor username then of course he can try as many times as he wants, what you could do here is rename the admin account through the group policy again it under security settings.
can do it either from the mmc, load group policy, or gpedit.msc
now these are for local accounts only.

0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Free Tool: Site Down Detector

Helpful to verify reports of your own downtime, or to double check a downed website you are trying to access.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now