?
Solved

Account keeps locking out

Posted on 2008-10-28
3
Medium Priority
?
708 Views
Last Modified: 2013-12-24
we have an account that is continually getting locked out.  Is there any way we can find out where it is getting locked out from?  I looked in security on the DC and both don't show any failed login attempts...  Any utilities out there that can show incoming authentication attempts?
0
Comment
Question by:TCrockett
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
3 Comments
 
LVL 17

Expert Comment

by:JohnGerhardt
ID: 22823728
0
 
LVL 35

Accepted Solution

by:
Joseph Daly earned 750 total points
ID: 22823819
Ok here is where I would start. Download the Account Lockout tools from microsoft.
http://www.microsoft.com/downloads/details.aspx?FamilyId=7AF2E69C-91F3-4E63-8629-B999ADDE0B9E&displaylang=en

Youll want to run the LockoutStatus.exe on the account that is getting the frequent lockouts. This should return the domain controller where the account was locked out and also the time. If you have multiple DC's its possible one of the other ones is locking the account and you cant see it.

Once you have the lockout time and location then you can check the event logs on that domain controller to for failed events.
0
 

Author Comment

by:TCrockett
ID: 22828121
Here is what it shows, It shows that the lockout is coming from itself???:

Target Account Name:      avhadmin
       Target Account ID:      xxx\admin
       Caller Machine Name:      xxx-DC1
       Caller User Name:      xxx-DC1$
       Caller Domain:      xxxx
       Caller Logon ID:      (0x0,0x3E7)
0

Featured Post

Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In this blog post, we’ll look at how ClickHouse performs in a general analytical workload using the star schema benchmark test.
In this blog post, we’ll look at how using thread_statistics can cause high memory usage.
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…
In this video, Percona Solutions Engineer Barrett Chambers discusses some of the basic syntax differences between MySQL and MongoDB. To learn more check out our webinar on MongoDB administration for MySQL DBA: https://www.percona.com/resources/we…

718 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question