Solved

To lock user account (Domain user account) while Offline on 5 unsuccessful tries

Posted on 2006-06-15
3
255 Views
Last Modified: 2010-04-13
We know that as per GPO policies a Domain account can be locked out upon unsuccessful tries while being on the network and connected to domain.

But imagine a scenario when a laptop gets stolen... the theif wants to access the data on the laptop... he knows the login...

currently windows allows unlimited tries to guess user password (if login is known) and doesnot lock the account (as it does while being on the network and connected to domain)

My question is.....
Is there a way we can lock a user account upon unsuccessful tries (locally)?
is there a third party tool which does that?

please do reply... as k question ... this is quiete urgent

Magicianspell

0
Comment
Question by:magicianspell
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
3 Comments
 
LVL 13

Accepted Solution

by:
Kini pradeep earned 200 total points
ID: 16913929
yes there is:
if its a win xp m/c then setup a local password policy, now this policy can only assign the number of allowed invalid attempts to lock the account.
i did that on a standalone machine and it did lock the account, i also added this user to the local administrators group, and still am able to lock the account.
now the problem is the administrator account cannot be locked, so if the person is trying to guess the password with the administartor username then of course he can try as many times as he wants, what you could do here is rename the admin account through the group policy again it under security settings.
can do it either from the mmc, load group policy, or gpedit.msc
now these are for local accounts only.

0

Featured Post

Best Practices: Disaster Recovery Testing

Besides backup, any IT division should have a disaster recovery plan. You will find a few tips below relating to the development of such a plan and to what issues one should pay special attention in the course of backup planning.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
auto copy 8 618
kerberos errors 7 556
Question about teaming two NIC's on Server 2012 2 596
Windows 2000 server can't ping domain controller until after clearing arp cache 6 76
NTFS file system has been developed by Microsoft that is widely used by Windows NT operating system and its advanced versions. It is the mostly used over FAT file system as it provides superior features like reliability, security, storage, efficienc…
In Part II of this series, I will discuss how to identify all open instances of Excel and enumerate the workbooks, spreadsheets, and named ranges within each of those instances.
A short tutorial showing how to set up an email signature in Outlook on the Web (previously known as OWA). For free email signatures designs, visit https://www.mail-signatures.com/articles/signature-templates/?sts=6651 If you want to manage em…
In an interesting question (https://www.experts-exchange.com/questions/29008360/) here at Experts Exchange, a member asked how to split a single image into multiple images. The primary usage for this is to place many photographs on a flatbed scanner…

749 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question