Have a client with Server 2003, and 2 services run under user who is a domain administrator. No one logs in as this user. Occasionally the services stop and when I try to restart them, it can't due to a logon failure. When I change the password in the service to what it should be, the service can start.
The domain account password isn't being changed in Active Directory, just the service it seems.
What is the best way to audit when a password is changed for a service?