Solved

AD Account locked out daily once

Posted on 2009-05-05
4
726 Views
Last Modified: 2012-05-06
Hi.. i have a problem in my AD account. it gets locked out automatically daily once. i am sure i am not entering any wrong password. i am in Server 2003 active directory. anybody have any solutions will be highly appreciated.

Thanks.
0
Comment
Question by:pshaduli
4 Comments
 
LVL 70

Assisted Solution

by:KCTS
KCTS earned 50 total points
ID: 24304032
Check that you do not have a scheduled task and/or service set to run using the account and an old password.
0
 
LVL 18

Assisted Solution

by:Americom
Americom earned 50 total points
ID: 24304053
Was there a password changed lately? If so, then you must have some scheduled task using this old password, or you could have terminal session or logged session on multiple machines still active. You can check your secuirty event logo on your DCs to find out which machine(s) the account was locked from.
0
 
LVL 27

Assisted Solution

by:bluntTony
bluntTony earned 50 total points
ID: 24304346
You may also want to clear out any cached credentials on the workstation you are logging on to.
Control Panel | User Accounts | Advanced | Manage Passwords - clear out any entries in here.
Like Americom says, check the event logs on your DC(s) for failed logon attempts. As well as the source machine, check the logon type on the event. This will give you an idea of the source : http://www.windowsecurity.com/articles/Logon-Types.html
For example, a logon type 3 will most likely refer to a bad attempt the connect to a shared folder on the network.
0
 
LVL 1

Accepted Solution

by:
FADVMSAdmin earned 100 total points
ID: 24314130
This typically happens in my company when an administrator RDPs into a server for whatever reason and then simply disconnects without logging off. Then when that admin has a scheduled password change, the old RDP session continues to use the old password causing lockouts such as this.

If you have access to the DCs of your network, I suggest using the Microsoft Account Lockout tools, especially the EventcombMT.exe to scour your DC's security log to find out where the lockout is coming from (i.e. your machine, some other server, etc). That should lead you to an answer. That is of course if your AD environment is auditing those kinds of events.

MS Account Lockout tools can be found here:
http://www.microsoft.com/downloads/details.aspx?familyid=7AF2E69C-91F3-4E63-8629-B999ADDE0B9E&displaylang=en

Some useful info:
http://technet.microsoft.com/en-us/library/cc738772.aspx
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Installing a printer using group policy preferences is not that hard let’s take a look at it. First lets open up your group policy console and edit the policy you want to add it to. I recommend creating a new policy for each printer makes it a l…
In this article, I am going to show you how to simulate a multi-site Lab environment on a single Hyper-V host. I use this method successfully in my own lab to simulate three fully routed global AD Sites on a Windows 10 Hyper-V host.
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …

813 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

17 Experts available now in Live!

Get 1:1 Help Now