• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 847
  • Last Modified:

Active Directory block accounts of some of my users

Hi
We have a Windows 2003 Server with AD running in two servers with Microsoft Exchange Server in one of them. After about one month all our accounts come blocked every morning and severall times by day by the Active Directory himself.
We have all the licencensing process ok and service "License Logging Server" running ok.
Why this happens ? How to solve the situation ?
Can you help please ?
Thank you very mutch Raul
0
raulcord
Asked:
raulcord
1 Solution
 
MidnightOneCommented:
What do you mean by all accounts become blocked? Users are unable to log in? What error message, if any, do they get?
0
 
admin_lbpsbCommented:
Sounds like a virus to me. Have a look at Event Viewer, Security for Event ID 644 (locked out accounts) on both AD servers. The event will list the computer trying to log in.
0
 
DarrenJLCommented:
It does sound a lot like the Conficker worm (http://support.microsoft.com/kb/962007) but it could also be something else.

We use a proxy server to protect our users from the web and occasionally this locks certain users out. One user (Web development) uses Safari as one of their web browsers and that tries multiple times to connect to the web through the proxy server, after the 10th attempt it locks the users account and requires a member of IT to unlock it again.

Our Proxy server is connected via LDAP to our AD infrastructure.

Darren
0
 
raulcordAuthor Commented:
Thank you very mutch
0

Featured Post

Has Powershell sent you back into the Stone Age?

If managing Active Directory using Windows Powershell® is making you feel like you stepped back in time, you are not alone.  For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now