I have a windows 2003 server that runs a 3rd party application. This 3rd party application installs 2 local accounts on this server and sets a default password.
We recently had to change the password on these two local accounts.There are many appliances on the network that use these two accounts to interface with the 3rd party application.
Since the change, we are having problems with these two local accounts getting locked.
We have made password updates in several places but the passwords keep getting locked.
I see evidence of password failures in the security event log but how can I track down the devices that are still using the old password?
check local account lockout policy, that affects the local system, [if this box is not on domain]
you can then disable the policy untill you find the root cause
generally the accounts get lockout if they throw bad passwords, so essentially you should be looking into the security logs and locate the events when bad password was used against those accounts and that caused them to lockout