Solved

Locking out a user in windows how to find,

Posted on 2010-09-24
7
785 Views
Last Modified: 2013-12-24
An application is locking out a user like almost each and every day from a commputer, we think that probably an application is trying to login with a user and a wrong password and after 5 times policy in active directory is locking out the user from the computer. I am saying with a wrong password it is trying to login because this started happening after a password reset of a user. Is there a way to track down which application is causing this and how can we find that application and prevent this from happening... look to hear from you asap thank you very much
0
Comment
Question by:fatihdi
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
  • 2
7 Comments
 
LVL 39

Expert Comment

by:Krzysztof Pytko
ID: 33751590
Try to use LockoutStatus and eventcombMT from AL Tools from Microsoft. It would help find lockout user account (DC, event logs in central point)

http://www.microsoft.com/downloads/en/details.aspx?FamilyId=7AF2E69C-91F3-4E63-8629-B999ADDE0B9E&displaylang=en
0
 
LVL 38

Expert Comment

by:ChiefIT
ID: 33752556
Should be some failed logon attempts in the security event logs. I believe these will give the computer and possibly the application that's got you bound up.

Also on the client's computer, maybe you have a saved password in "managed passwords". Go to the client's control pannel>>Users>>advanced>>managed passwords and remove those.
0
 

Author Comment

by:fatihdi
ID: 33752915
@chiefIT , there is no Users in control panel in windows 2000's control panel. where should i look for managed passwords? for your first paraghraph in your comment i did not get what am i supposed to as well? how can i see security event logs ?
cp.JPG
0
Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 

Author Comment

by:fatihdi
ID: 33753316
@iSiek , Thank you for giving the link but the problem is I am not concerned about which account is locked it is always the same. but the thing is I want to find the application that is locking the account,causing it to be locked out !!
0
 
LVL 39

Accepted Solution

by:
Krzysztof Pytko earned 500 total points
ID: 33756147
Yup, this soft shows you which account is locked out and where it is locked out. Then use eventcombMT to examine event viewer logs and you will see which PC locks out that account.
0
 
LVL 38

Expert Comment

by:ChiefIT
ID: 33785758
On a windows 2000 machine, there are no managed passwords... I didn't realize we are looking at a Win2000 client.

0
 
LVL 38

Expert Comment

by:ChiefIT
ID: 33785766
OK, so after a password change, you might be logged on elsewhere "remotely" using the old password. This immediately locks you out. Looks like iSiek has a way to track this down.
0

Featured Post

PeopleSoft Has Never Been Easier

PeopleSoft Adoption Made Smooth & Simple!

On-The-Job Training Is made Intuitive & Easy With WalkMe's On-Screen Guidance Tool.  Claim Your Free WalkMe Account Now

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Did you know that more than 4 billion data records have been recorded as lost or stolen since 2013? It was a staggering number brought to our attention during last week’s ManageEngine webinar, where attendees received a comprehensive look at the ma…
Had a business requirement to store the mobile number in an environmental variable. This is just a quick article on how this was done.
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …
Attackers love to prey on accounts that have privileges. Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …

710 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question