Want to win a PS4? Go Premium and enter to win our High-Tech Treats giveaway. Enter to Win

x
?
Solved

How to lock a vpn/domain account after x number of tries on windows 2008

Posted on 2011-03-09
3
Medium Priority
?
526 Views
Last Modified: 2012-05-11
We are using windows 2008 as a vpn server, using NPS (on the same box)  for defining the connection criteria (ie. time and day of access, timeouts, etc) and domain user accounts for authentication.

When logging on to a domain joined workstation (not via vpn) if the user fails the log in after x number of attempts the domain account is locked.  However, this does not happen on the (remote user) VPN connection.  Remote computers are not joined to the domain.  Is there a setting somewhere (that I don't see) that I can tell windows 2008 to lock the account after x number of tries?

The VPN / Terminal server box is 2008 sever standard.  Currently our DC is a W2K box.  Soon to be upgraded to 2008 but we are trying to get the VPN solution working now.  All clients right now are win XP.  Apparently since I am using NPS with specific AD groups (on the 2008 box), the "Dial-in" tab in for the user in AD computers and users does not affect the ability to connect.
0
Comment
Question by:PlazaProp
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 59

Expert Comment

by:Darius Ghassem
ID: 35086117
0
 
LVL 1

Accepted Solution

by:
PlazaProp earned 0 total points
ID: 35087841
Thanks for the tip but I found that I had "allow access" check in on the dial in tab instead "control access through remote access policy".  After I changed it the account was locking after x number of attempts as defined by GPO.  
0
 
LVL 1

Author Closing Comment

by:PlazaProp
ID: 35126374
fix own issue
0

Featured Post

Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Microsoft Office 365 is a subscriptions based service which includes services like Exchange Online and Skype for business Online. These services integrate with Microsoft's online version of Active Directory called Azure Active Directory.
It’s time for spooky stories and consuming way too much sugar, including the many treats we’ve whipped for you in the world of tech. Check it out!
Are you ready to implement Active Directory best practices without reading 300+ pages? You're in luck. In this webinar hosted by Skyport Systems, you gain insight into Microsoft's latest comprehensive guide, with tips on the best and easiest way…
There are cases when e.g. an IT administrator wants to have full access and view into selected mailboxes on Exchange server, directly from his own email account in Outlook or Outlook Web Access. This proves useful when for example administrator want…

604 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question