r3helpdesk
asked on
AD account lockout using Mac
Hello Experts,
We're having an hard time dignosing an account lockout after an AD password change
The user is using mac os x mountain lion with an istance of Win XP vitualized
we already checked all the mobile devices and the password was correctly updated
we also checked outlook password and any mapped share was recreated to match the new password
parsing the logs we found this:
SamLogon: Network logon domain\user MacBook-Air.local 0xC0000234
and also
The computer attempted to validate the credentials for an account.
Authentication Package: MICROSOFT_AUTHENTICATION_P
Logon Account: same user
Source Workstation: MacBook-Air.local
Error Code: 0xc000006a
We can't seem to find what could cause this.
It seems related to the mac profile but how can we be sure?
Is there a way to know what processes or scheduled tasks are running with that username?
also, is thee a way on mac os x to find what services and processes are running on those credentials?
Thanks
We're having an hard time dignosing an account lockout after an AD password change
The user is using mac os x mountain lion with an istance of Win XP vitualized
we already checked all the mobile devices and the password was correctly updated
we also checked outlook password and any mapped share was recreated to match the new password
parsing the logs we found this:
SamLogon: Network logon domain\user MacBook-Air.local 0xC0000234
and also
The computer attempted to validate the credentials for an account.
Authentication Package: MICROSOFT_AUTHENTICATION_P
Logon Account: same user
Source Workstation: MacBook-Air.local
Error Code: 0xc000006a
We can't seem to find what could cause this.
It seems related to the mac profile but how can we be sure?
Is there a way to know what processes or scheduled tasks are running with that username?
also, is thee a way on mac os x to find what services and processes are running on those credentials?
Thanks
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
After we deleted the old value in the keyring no faulty sync happened again
Locate any information related to the logon event.
Please post it back here for me.