PROJHOPE
asked on
When an Active Directory account is disabled can the account still operate
Major screw up by our HR dept on a terminated employee, the employee was said to left the building but didn't, IT locked down account by disabling Active Directory account
Later we realized that the employee was logged into their workstation at the same time the AD was disabled.
Now for Domain Admins some accounts used in multiple server settings get locked out but you do not realized they are locked out until trying to make a new connection.
Question is this, if you disable or lock an AD account while the account is logged onto the network does the disable/lock out become effective only once the current session is terminated?
Later we realized that the employee was logged into their workstation at the same time the AD was disabled.
Now for Domain Admins some accounts used in multiple server settings get locked out but you do not realized they are locked out until trying to make a new connection.
Question is this, if you disable or lock an AD account while the account is logged onto the network does the disable/lock out become effective only once the current session is terminated?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.