On Windows 2008 server, our GPO has account lockout on 3 bad attempts. I want to add an exception for one user, "smith" to not lock out at all (unlimited attempts). I did this successfully by creating a new policy called "smith" which made lockout at 0 attempts (means it never locks out), applied it to this user, smith, and activated it. At first it worked. I did about 10 bad pw attempts on it and it didn't lock. Now all of a sudden it locks again after 3 bad tries, even though I didn't change anything on the policy. What's going on?