Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
?
Solved

User account locks out every 60 seconds or less

Posted on 2008-11-05
8
Medium Priority
?
481 Views
Last Modified: 2013-12-04
One of my users changed his password a couple of days ago. After he change it, his account started locking out every 60 seconds or so. It locks out even if his computer is not on. I have attempted to track the problem down using Microsoft's account lockout tools, but the best I have so far is an entry in the log files that seems to indicate the problem is coming from our Exchange server. I manually changed his password back to the old one and everything is currently working fine, but he needs to be able to change his password as it is a company policy to change them on a regular basis. Below is the only log entry  I can find that seems to relate to the problem. I have replaced the actual server names with their function.

644,AUDIT SUCCESS,Security,Wed Nov 05 12:55:16 2008,NT AUTHORITY\SYSTEM,User Account Locked Out:     Target Account Name: (Username)     Target Account ID: %{S-1-5-21-823518204- . . .}     Caller Machine Name:  (exchange server)     Caller User Name: $ (domain controller)    Caller Domain: (domain name)     Caller Logon ID: (0x0,0x3E7)  
0
Comment
Question by:reynco
  • 2
  • 2
  • 2
  • +2
8 Comments
 
LVL 35

Expert Comment

by:Joseph Daly
ID: 22888910
Well why not try this. This will tell you if he is logged into any other machine in the network.

http://www.digitallabs.net/lu/

If that fails you could always just modify his user account name.
0
 
LVL 59

Expert Comment

by:Darius Ghassem
ID: 22888923
0
 
LVL 8

Expert Comment

by:TDKD
ID: 22889241
This really does sound like a cached credential issue, check with the user to make sure they dont have a mapped drive with outdated credentials. Also, does this user logon to their PC with cached domain level credentials? Or with a local account?
0
Windows Server 2016: All you need to know

Learn about Hyper-V features that increase functionality and usability of Microsoft Windows Server 2016. Also, throughout this eBook, you’ll find some basic PowerShell examples that will help you leverage the scripts in your environments!

 
LVL 21

Expert Comment

by:snusgubben
ID: 22890558
Does he use Active Sync where he has typed his old pw and ticked remember pw on his PDA/mobile phone?
0
 

Accepted Solution

by:
reynco earned 0 total points
ID: 22896367
Thank you for your suggestions, but I found a solution. I changed his PW back to what it was before this issue started. His account didn't lock out so we left it over night and I forced him to change it again this morning when he logged it. So far the account has not locked out.  Im guessing that one of the AD DCs didnt sync correctly and was causing the lockout. One of them was taken offline about the time he originally changed his PW.
0
 
LVL 8

Expert Comment

by:TDKD
ID: 22898744
That can happen, but rare.
0
 
LVL 35

Expert Comment

by:Joseph Daly
ID: 22900109
If that were the case you should have been able to see the discrepancy in the account lockout tools pwd last changed column. The DC that failed the sync would still have the original pw set date.
0
 

Author Comment

by:reynco
ID: 22904416
xxdcmast -  Thank you for your followup. That was just my best guess at what happened. All of the servers showed the same data in the lockout tools. I don't recall seeing any discrepancies.
0

Featured Post

Microsoft Certification Exam 74-409

Veeam® is happy to provide the Microsoft community with a study guide prepared by MVP and MCT, Orin Thomas. This guide will take you through each of the exam objectives, helping you to prepare for and pass the examination.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

After seeing many questions for JRNL_WRAP_ERROR for replication failure, I thought it would be useful to write this article.
The article explains the process to deploy a Self-Service password reset portal I developed a few years ago. Hopefully, it will prove useful to someone.  Any comments, bug reports etc. are welcome...
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles from a Windows Server 2008 domain controller to a Windows Server 2012 domain controlle…
There are cases when e.g. an IT administrator wants to have full access and view into selected mailboxes on Exchange server, directly from his own email account in Outlook or Outlook Web Access. This proves useful when for example administrator want…
Suggested Courses

580 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question