Solved

Guest Account Lockout

Posted on 2013-06-13
2
816 Views
Last Modified: 2013-06-17
I've been noticing that my guest account on my domain controller is randomly getting locked out.  The odd thing is, this account is disabled, how would a account get locked out if its disabled already?  I normally would never notice these events, but my monitoring software emails on account lockouts.  I'm just trying to get to the bottom of the cause and too see if I should just igonore them.  It happens randomly from different workstations.  I also have a gpo setup to disable the local guest account at logon on each workstation.  Anyone else run into this issue?
0
Comment
Question by:PSGITech
2 Comments
 
LVL 26

Accepted Solution

by:
pony10us earned 500 total points
ID: 39244774
"The odd thing is, this account is disabled, how would a account get locked out if its disabled already?"

Disable and lock out are two separate functions.  Even though the account is disabled it still will look at attempts to sign in and if it matchs the number of failures set to lockout then it will lock out the account.

It is recommended that you change the name of the guest account as well as disable it. It may be that one or more individuals (" It happens randomly from different workstations") may be attempting to access the system.

As long as the account is disabled it is not a big threat however it is always best to know what/who is attempting to access your system.  I would look at the workstations that are the cause and see if anything shows up in their event viewer that may indicate what they are attempting to do.
0
 

Expert Comment

by:daisythecat
ID: 39245198
If workstations arent configured properly, or if they use a home version of windows rather than pro or enterprise they can try to access the guest account when attempting to access a domain or workgroup
0

Featured Post

Efficient way to get backups off site to Azure

This user guide provides instructions on how to deploy and configure both a StoneFly Scale Out NAS Enterprise Cloud Drive virtual machine and Veeam Cloud Connect in the Microsoft Azure Cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Installing a printer using group policy preferences is not that hard let’s take a look at it. First lets open up your group policy console and edit the policy you want to add it to. I recommend creating a new policy for each printer makes it a l…
In this article, we will see the basic design consideration while designing a Multi-tenant web application in a simple manner. Though, many frameworks are available in the market to develop a multi - tenant application, but do they provide data, cod…
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …
This video shows how to use Hyena, from SystemTools Software, to bulk import 100 user accounts from an external text file. View in 1080p for best video quality.

778 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question