jskfan
asked on
Windows Account lockout Policy
Reset account lockout counter after = How long (in minutes) it takes after a failed logon attempt before the counter tracking failed logons is reset to zero (range is 1 to 99,999 minutes).
A few special cases are:
Account lockout duration
I am trying to understand the difference between
Reset account lockout counter after AND Account lockout duration
Thanks
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
in our case is 15 minutes.
I don't understand the purpose of this setting <<Reset account lockout counter after>>
If the setting didn't exist at all what would as a security breach.??
I don't understand the purpose of this setting <<Reset account lockout counter after>>
If the setting didn't exist at all what would as a security breach.??
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
I understand. it stores the number of your failed login attempts even after you succeded to login [as long as you didn't pass the threshold ]. and the number will be reset to 0 when the time of [Reset account lockout counter after] has expired.
It is just another Headache for the Administrators ..)
It is just another Headache for the Administrators ..)
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thanks for your help
ASKER
you typed 3 wrong passwords then you typed the right password at the 4th attempt. at this stage the counter is set to 0.
This shoudld be the default, and I don't see that it will make sense if it was set up otherwise.