[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 336
  • Last Modified:

Windows Active Directory Something Locking out Accounts

We have a windows 2008 active directory environment.  Random accounts are getting locked out.  Is there a tool that I can load that will allow me to figure out what is locking out the accounts or is there something that I can turn on in active directory that will allow me to log the device or system that is causing the account lock outs?
0
BPSD-IT
Asked:
BPSD-IT
1 Solution
 
Radhakrishnan RITCommented:
0
 
Joseph DalyCommented:
The account lockout tools is always my first go to on this. Once you have them up and running you should be able to get the dates/times/locations of the lock.

To get the most out of the lockout tools you will need to have security auditing turned on on your DCs.

Assuming you have the auditing turned on and the time the account was locked out you can look at the event log for warnings/failures around that time. In the failure audit event you should have an IP, hostname, or some other identifying information as to what i causing the lock.
0
 
Pankaj_401Commented:
There may be many causes for account locked out such as :
•user's account in stored user name and passwords
•user's account tied to persistent mapped drive
•user's account as a service account
•user's account used as an IIS application pool identity
•user's account tied to a scheduled task
•un-suspending a virtual machine after a user's pw as changed
For troubleshooting account lockout randomly, please check this KB article : http://technet.microsoft.com/en-us/library/cc773155(WS.10).aspx
Additionally, you can have check this link also which seems fit in resolving such account lockout issues quickly :http://www.activedirectoryaudit.com/
0

Featured Post

Get your Disaster Recovery as a Service basics

Disaster Recovery as a Service is one go-to solution that revolutionizes DR planning. Implementing DRaaS could be an efficient process, easily accessible to non-DR experts. Learn about monitoring, testing, executing failovers and failbacks to ensure a "healthy" DR environment.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now