We've been experiencing account lock outs in our Active Directory - acting like bad password attempts. We've looked at the event viewer on the Domain Controller in question and the failure audits occur within 2-3 seconds for the same user. I don't think any user could type their password incorrectly that many times to lock their account out that quickly. Has anyone else ever experienced a problem with account lock outs but the user didn't fail typing in their password?
This also seems to affect the synchronization of our user's PDA phones - if the account is locked out, the password is then not supplied and the synchronization won't occur