[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now


AD account lockout using Mac

Posted on 2012-09-04
Medium Priority
Last Modified: 2012-09-18
Hello Experts,

We're having an hard time dignosing an account lockout after an AD password change

The user is using mac os x mountain lion with an istance of Win XP vitualized
we already checked all the mobile devices and the password was correctly updated
we also checked outlook password and any mapped share was recreated to match the new password

parsing the logs we found this:

SamLogon: Network logon      domain\user      MacBook-Air.local      0xC0000234

and also

The computer attempted to validate the credentials for an account.

Authentication Package:      MICROSOFT_AUTHENTICATION_PACKAGE_V1_0
Logon Account:      same user
Source Workstation:      MacBook-Air.local
Error Code:      0xc000006a

We can't seem to find what could cause this.

It seems related to the mac profile but how can we be sure?
Is there a way to know what processes or scheduled tasks are running with that username?
also, is thee a way on mac os x to find what services and processes are running on those credentials?

Question by:r3helpdesk
  • 2
LVL 32

Expert Comment

ID: 38367273
Can you take a look a the console log viewer?

Locate any information related to the logon event.

Please post it back here for me.

Accepted Solution

r3helpdesk earned 0 total points
ID: 38391117

thanks for your inputs.
We've looked up and it seems the problem is connected to the OS X calendar application not correctly upgrading the domain password.
It gathers the event of Outlook calendars to try to integrate it with the system one and use the default OS X pop outs

Do you know of a way to automaticly update the sysem password with the one used in AD?

Author Closing Comment

ID: 38408719
After we deleted the old value in the keyring no faulty sync happened again

Featured Post

Has Powershell sent you back into the Stone Age?

If managing Active Directory using Windows Powershell® is making you feel like you stepped back in time, you are not alone.  For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Active Directory can easily get cluttered with unused service, user and computer accounts. In this article, I will show you the way I like to implement ADCleanup..
In this article I will be showing you how to subnet the easiest way possible for IPv4 (Internet Protocol version 4). This article does not cover IPv6. Keep in mind that subnetting requires lots of practice and time.
This video shows how to use Hyena, from SystemTools Software, to bulk import 100 user accounts from an external text file. View in 1080p for best video quality.
Michael from AdRem Software explains how to view the most utilized and worst performing nodes in your network, by accessing the Top Charts view in NetCrunch network monitor (https://www.adremsoft.com/). Top Charts is a view in which you can set seve…

834 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question