Solved

Account keeps locking out

Posted on 2008-10-28
3
704 Views
Last Modified: 2013-12-24
we have an account that is continually getting locked out.  Is there any way we can find out where it is getting locked out from?  I looked in security on the DC and both don't show any failed login attempts...  Any utilities out there that can show incoming authentication attempts?
0
Comment
Question by:TCrockett
3 Comments
 
LVL 17

Expert Comment

by:JohnGerhardt
ID: 22823728
0
 
LVL 35

Accepted Solution

by:
Joseph Daly earned 250 total points
ID: 22823819
Ok here is where I would start. Download the Account Lockout tools from microsoft.
http://www.microsoft.com/downloads/details.aspx?FamilyId=7AF2E69C-91F3-4E63-8629-B999ADDE0B9E&displaylang=en

Youll want to run the LockoutStatus.exe on the account that is getting the frequent lockouts. This should return the domain controller where the account was locked out and also the time. If you have multiple DC's its possible one of the other ones is locking the account and you cant see it.

Once you have the lockout time and location then you can check the event logs on that domain controller to for failed events.
0
 

Author Comment

by:TCrockett
ID: 22828121
Here is what it shows, It shows that the lockout is coming from itself???:

Target Account Name:      avhadmin
       Target Account ID:      xxx\admin
       Caller Machine Name:      xxx-DC1
       Caller User Name:      xxx-DC1$
       Caller Domain:      xxxx
       Caller Logon ID:      (0x0,0x3E7)
0

Featured Post

Are your AD admin tools letting you down?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
server 2012 and 2008 3 31
Power shell 4 29
Cannot access RDP (AD 2012) 6 21
how to enter repadmin /removelingeringobjects command 2 19
Is your Office 365 signature not working the way you want it to? Are signature updates taking up too much of your time? Let's run through the most common problems that an IT administrator can encounter when dealing with Office 365 email signatures.
These days, all we hear about hacktivists took down so and so websites and retrieved thousands of user’s data. One of the techniques to get unauthorized access to database is by performing SQL injection. This article is quite lengthy which gives bas…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…
This video shows how to use Hyena, from SystemTools Software, to bulk import 100 user accounts from an external text file. View in 1080p for best video quality.

860 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question