Active Directory Account lockout
Posted on 2011-10-31
My AD account is getting locked out by incorrect/old password in a Network Management Server web application that I log into.
Sometimes I get locked out of Active Directory and other times I only get locked out of TACACS (via SSH client) and NMS (web application).
Sometimes my TACACS and NMS start working again without having my AD account reset.
I was told that sometimes the AD account lockout takes a while to replicate to where the Helpdesk is located.
I assumed that account lockouts and resets were sent immediately and would show up anywhere in the AD almost immediately.
When I log into and use the NMS I also start getting prompts to reauthenticate to Outllook, Communicator and even get a set of keys icon in my taskbar asking me to verify my credentials.
I do not get locked out if I don't open the NMS application and I will start troubleshooting there to get any old/cached information out of NMS but the fact that I sometimes get locked out of AD and everything else and have to have the helpdesk unlock my account and then sometimes I only get locked out of NMS and TACACS and the helpdesk says my account is not locked and then in an hour or so my TACACS and NMS accepts my password is strange.
I believe all our systems use AD for authentication.