Want to win a PS4? Go Premium and enter to win our High-Tech Treats giveaway. Enter to Win

x
?
Solved

Windows Active Directory Something Locking out Accounts

Posted on 2014-02-26
3
Medium Priority
?
335 Views
Last Modified: 2014-02-27
We have a windows 2008 active directory environment.  Random accounts are getting locked out.  Is there a tool that I can load that will allow me to figure out what is locking out the accounts or is there something that I can turn on in active directory that will allow me to log the device or system that is causing the account lock outs?
0
Comment
Question by:BPSD-IT
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
3 Comments
 
LVL 23

Accepted Solution

by:
Radhakrishnan R earned 2000 total points
ID: 39888727
0
 
LVL 35

Expert Comment

by:Joseph Daly
ID: 39888812
The account lockout tools is always my first go to on this. Once you have them up and running you should be able to get the dates/times/locations of the lock.

To get the most out of the lockout tools you will need to have security auditing turned on on your DCs.

Assuming you have the auditing turned on and the time the account was locked out you can look at the event log for warnings/failures around that time. In the failure audit event you should have an IP, hostname, or some other identifying information as to what i causing the lock.
0
 
LVL 5

Expert Comment

by:Pankaj_401
ID: 39891120
There may be many causes for account locked out such as :
•user's account in stored user name and passwords
•user's account tied to persistent mapped drive
•user's account as a service account
•user's account used as an IIS application pool identity
•user's account tied to a scheduled task
•un-suspending a virtual machine after a user's pw as changed
For troubleshooting account lockout randomly, please check this KB article : http://technet.microsoft.com/en-us/library/cc773155(WS.10).aspx
Additionally, you can have check this link also which seems fit in resolving such account lockout issues quickly :http://www.activedirectoryaudit.com/
0

Featured Post

Concerto Cloud for Software Providers & ISVs

Can Concerto Cloud Services help you focus on evolving your application offerings, while delivering the best cloud experience to your customers? From DevOps to revenue models and customer support, the answer is yes!

Learn how Concerto can help you.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Sometimes drives fill up and we don't know why.  If you don't understand the best way to use the tools available, you may end up being stumped as to why your drive says it's not full when you have no space left!  Here's how you can find out...
Resolving an irritating Remote Desktop connection that stops your saved credentials from being used.
This tutorial will walk an individual through the steps necessary to install and configure the Windows Server Backup Utility. Directly connect an external storage device such as a USB drive, or CD\DVD burner: If the device is a USB drive, ensure i…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…

636 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question