For some reasons I won't go into, I have removed the account lockout from the Default Domain policy. I have done this by setting the account lockout threshold to "0" attempts. This setting HAS replicated to my second DC, and I can see it in all areas, and on both servers. Yet after 4 invalid login attempts by any user on the network, their account still locks out.
I have searched all over the net trying to find the cause, and can only find other people asking this same question, but with no answers. There must be a setting that is being missed that is still enforcing this policy.
Any help would be appreciated.