Solved

How to lock a vpn/domain account after x number of tries on windows 2008

Posted on 2011-03-09
3
516 Views
Last Modified: 2012-05-11
We are using windows 2008 as a vpn server, using NPS (on the same box)  for defining the connection criteria (ie. time and day of access, timeouts, etc) and domain user accounts for authentication.

When logging on to a domain joined workstation (not via vpn) if the user fails the log in after x number of attempts the domain account is locked.  However, this does not happen on the (remote user) VPN connection.  Remote computers are not joined to the domain.  Is there a setting somewhere (that I don't see) that I can tell windows 2008 to lock the account after x number of tries?

The VPN / Terminal server box is 2008 sever standard.  Currently our DC is a W2K box.  Soon to be upgraded to 2008 but we are trying to get the VPN solution working now.  All clients right now are win XP.  Apparently since I am using NPS with specific AD groups (on the 2008 box), the "Dial-in" tab in for the user in AD computers and users does not affect the ability to connect.
0
Comment
Question by:PlazaProp
  • 2
3 Comments
 
LVL 59

Expert Comment

by:Darius Ghassem
ID: 35086117
0
 
LVL 1

Accepted Solution

by:
PlazaProp earned 0 total points
ID: 35087841
Thanks for the tip but I found that I had "allow access" check in on the dial in tab instead "control access through remote access policy".  After I changed it the account was locking after x number of attempts as defined by GPO.  
0
 
LVL 1

Author Closing Comment

by:PlazaProp
ID: 35126374
fix own issue
0

Featured Post

Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Find out how to use Active Directory data for email signature management in Microsoft Exchange and Office 365.
A procedure for exporting installed hotfix details of remote computers using powershell
This tutorial will walk an individual through the steps necessary to enable the VMware\Hyper-V licensed feature of Backup Exec 2012. In addition, how to add a VMware server and configure a backup job. The first step is to acquire the necessary licenā€¦
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles from a Windows Server 2008 domain controller to a Windows Server 2012 domain controlleā€¦

863 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

24 Experts available now in Live!

Get 1:1 Help Now