I have User who get periodically locked out of our domain, these are user who just user forward facing web application but their log in is tied to an Active directory account.
These user do not log into the domain, nor are their PC a member of the domain
I use the windows Password Lockout status tool and find the error:
"Max Password age for User XXXX is 90 day"
"Current Password Age is 94 day ....."
"Password remains Valid for 49704 day......"
I have performed a web / google search and not found anything
User are not getting notified by email by a third Party app that we use for self service password resets. We user AD self Service by Manage Engine.
When we get the call this error is the same for every user with an issue
Associates who log on to the Domain and have member PC do not have this issue
Thanks ahead of time for any help