Improve company productivity with a Business Account.Sign Up

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 844
  • Last Modified:

Active directory account lock every time

Hi all,

I am on a domain 2003, DC are in standard version and SP2, and i have an issue about one account. This account is lock sometimes whitout (human) logon failure. I search in security logs but nothing i don't find lock log and logon failure.

Can you help me?
0
makanzore
Asked:
makanzore
1 Solution
 
ketelhuisCommented:
Did you check all DCs event logs?
0
 
makanzoreAuthor Commented:
I checked all dc in site
0
 
ipajonesCommented:
Does the user of this account have a mobile device with access to emails ?
0
Simplify Active Directory Administration

Administration of Active Directory does not have to be hard.  Too often what should be a simple task is made more difficult than it needs to be.The solution?  Hyena from SystemTools Software.  With ease-of-use as well as powerful importing and bulk updating capabilities.

 
sudheendra2001Commented:
remove the paasword lockout policy and check. Beacuse if you have any password lock out policy and if he saved his password in any software and changed his password then this kind of problem will come.

In my case i saved my password in one toolbar then my account was locking every often.
0
 
JamesSenior Cloud Infrastructure EngineerCommented:
You need to be looking for Netlogon errors. DNS sounds like it is causing the issue. Check the PC and make sure it is using the correct ip addresses for DNS resolution.
0
 
Leon FesterSenior Solutions ArchitectCommented:
Use the Account Lockout Status tool from microsoft to see which Server requested that the account is locked. Then check the Security log for details of that account which is being locked.

http://www.microsoft.com/downloads/en/details.aspx?FamilyID=D1A5ED1D-CD55-4829-A189-99515B0E90F7&displaylang=en
0
 
makanzoreAuthor Commented:
No account have no mobile device and mailbox, it is a services account
I can't remove policy i am on production, and password didn't change and no body change it
I can't install any application on DC, so i try Account Lockout Status tool from my desktop and i have no result when i chose select target (with correct account)
0
 
AwinishCommented:
Did you use netwrix tool?
0
 
e_aravindCommented:
Want to try using the acctinfo.dll? to get more details about the account

Account Lockout and Management Tools
http://www.microsoft.com/downloads/en/details.aspx?FamilyId=7AF2E69C-91F3-4E63-8629-B999ADDE0B9E&displaylang=en

View Additional User Information in AD Users and Computers
http://www.petri.co.il/view_additional_user_information_in_aduc.htm
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Free Tool: Port Scanner

Check which ports are open to the outside world. Helps make sure that your firewall rules are working as intended.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now