Solved

How to lock a vpn/domain account after x number of tries on windows 2008

Posted on 2011-03-09
3
521 Views
Last Modified: 2012-05-11
We are using windows 2008 as a vpn server, using NPS (on the same box)  for defining the connection criteria (ie. time and day of access, timeouts, etc) and domain user accounts for authentication.

When logging on to a domain joined workstation (not via vpn) if the user fails the log in after x number of attempts the domain account is locked.  However, this does not happen on the (remote user) VPN connection.  Remote computers are not joined to the domain.  Is there a setting somewhere (that I don't see) that I can tell windows 2008 to lock the account after x number of tries?

The VPN / Terminal server box is 2008 sever standard.  Currently our DC is a W2K box.  Soon to be upgraded to 2008 but we are trying to get the VPN solution working now.  All clients right now are win XP.  Apparently since I am using NPS with specific AD groups (on the 2008 box), the "Dial-in" tab in for the user in AD computers and users does not affect the ability to connect.
0
Comment
Question by:PlazaProp
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 59

Expert Comment

by:Darius Ghassem
ID: 35086117
0
 
LVL 1

Accepted Solution

by:
PlazaProp earned 0 total points
ID: 35087841
Thanks for the tip but I found that I had "allow access" check in on the dial in tab instead "control access through remote access policy".  After I changed it the account was locking after x number of attempts as defined by GPO.  
0
 
LVL 1

Author Closing Comment

by:PlazaProp
ID: 35126374
fix own issue
0

Featured Post

DevOps Toolchain Recommendations

Read this Gartner Research Note and discover how your IT organization can automate and optimize DevOps processes using a toolchain architecture.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

OpenVPN is a great open source VPN server that is capable of providing quick and easy VPN access to your network on the cheap.  By default the software is configured to allow open access to your network.  But what if you want to restrict users to on…
This article runs through the process of deploying a single EXE application selectively to a group of user.
This tutorial will show how to configure a single USB drive with a separate folder for each day of the week. This will allow each of the backups to be kept separate preventing the previous day’s backup from being overwritten. The USB drive must be s…
Are you ready to implement Active Directory best practices without reading 300+ pages? You're in luck. In this webinar hosted by Skyport Systems, you gain insight into Microsoft's latest comprehensive guide, with tips on the best and easiest way…

726 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question