We help IT Professionals succeed at work.

Check out our new AWS podcast with Certified Expert, Phil Phillips! Listen to "How to Execute a Seamless AWS Migration" on EE or on your favorite podcast platform. Listen Now

x

User account still locked even though I unlock it in AD

Medium Priority
4,986 Views
Last Modified: 2012-05-11
I have a user who told me that her account is locked. When she tries to log on her she gets the error unable to log you on because the account has been locked, please contact you admin.

I have gone into AD and unlocked her account counless times. I have also checked my group policy settings and disabled the lockout settings. I have no clue what to do next.

Im running Windows Server 2008 r2. 8gb ram. I also noticed that the ram usage on the machine is at 7.5 and i cant restart the server until later this evening when all users are out of the office.
Comment
Watch Question

Top Expert 2011

Commented:
Has her account reached mandatory password reset expiry? If so, reset her password and see if that will allow her to login.

Author

Commented:
no. passwords dont expire in our environment.
JamesSenior Cloud Infrastructure Engineer
CERTIFIED EXPERT

Commented:
Have you checked the windows eventlogs on the Server? You should be looking for Netlogon errors. Make sure the user machine has the correct DNS ip address or addresses.

Author

Commented:
let me rephrase what i mentioned earlier. I tried to unlock her account from AD but it will not unlock.

Author

Commented:
so the only event logs involving this user is Audit failure but thats coming from her trying to log on to the vpn

Author

Commented:
on the user in AD, i tried right-click, properties, account tab, check unlock account, apply..... nothing changes. i tried right click, reset password, give new password, check unlock account, ok..... nothing changes. the account is still locked.

Author

Commented:
@yobri she failed at entering her correct password 5 times which made her account lock.
JamesSenior Cloud Infrastructure Engineer
CERTIFIED EXPERT

Commented:
There should be event id 4740 account locked. Have a look for this event and see what the description says.

Author

Commented:
i took two print screens of the 4740's events. there were 126 4740 events today the first is:

http://twitpic.com/4pjyos

the last one is:

http://twitpic.com/4pjy0h
Roland LeeSenior Systems Engineer
CERTIFIED EXPERT

Commented:
Yo dude, take a look at this, see if it works for you

http://dmitrysotnikov.wordpress.com/2007/08/14/enable-disable-unlock-user-accounts/ 

Commented:
Just ran into something similar today - maybe not exactly the same though

Had a user whose account kept getting locked - unlock it, it keeps getting locked again immediately.

Resolved by having this user disconnect all mapped network drives - this user had mapped drives, and had checked the "remember my password" box when they had initially set up the mapped drives.  By disconnecting these drives, the account did not lock up anymore.  In this user's case, that computer was probably trying to access the mapped drives on the file server (behind-the-scenes, repeatedly) thus locking out the user account due to the multiple authentication attempts.

Also that server is running Win2008R2, although I don't think that has much to do with your problem.  (BTW, what is your DC doing that it eats up so much RAM?)
Commented:
Unlock this solution and get a sample of our free trial.
(No credit card required)
UNLOCK SOLUTION

Author

Commented:
i did mulitple things that might have resolved the issue.
Unlock the solution to this question.
Thanks for using Experts Exchange.

Please provide your email to receive a sample view!

*This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

OR

Please enter a first name

Please enter a last name

8+ characters (letters, numbers, and a symbol)

By clicking, you agree to the Terms of Use and Privacy Policy.