<div>
Make sure the user doesn't have a local account on the client with the same username but different password.
</div>


<div>
Look through your services to see if somehow this user was associated with a service as the login account, with a stored password. Once the password is changed, the service attempting to log in with the stored password will log failures and lock the account out.<br />
<br />
I don't know for sure that this is what is causing your experience, but it's not clear that you ruled out this possibility.
</div>


<div>
I always try to avoid deleting AD accounts that have been in use long enough to leave traces. Not always possible and perhaps overly cautious....
</div>


<div>
Can you explain what your issue was? &nbsp;We are having the same issue with several users.
</div>


<div>
<div class="content wysiwyg-content">
For some reason I can't seem to locate the exact service or application that keeps locking out a specific account.<br />
<br />
Randomly one of our user accounts keeps getting locked out. I have been able to isolate it to being a login directly to one of our domain controllers and the SVCHOST service.<br />
<br />
I have used the MS Account Lockout Tools to find the DC and the NetLogon logs to locate the PID of the service; but still can't fix this issue as of yet. I was able to do this with W2k3 &amp;&nbsp;W2k8; not sure why W2k12 is not giving me the same results.<br />
<br />
Any help would be appreciated.
</div>
</div>


For some reason I can't seem to locate the exact service or application that keeps locking out a specific account.

Randomly one of our user accounts keeps getting locked out. I have been able to isolate it to being a login directly to one of our domain controllers and the SVCHOST service.

I have used the MS Account Lockout Tools to find the DC and the NetLogon logs to locate the PID of the service; but still can't fix this issue as of yet. I was able to do this with W2k3 & W2k8; not sure why W2k12 is not giving me the same results.

Any help would be appreciated.

Account keeps getting locked out -- Windows Server 2012

Windows Server 2012 is the server version of Windows 8 and the successor to Windows Server 2008 R2. Windows Server 2012 is the first version of Windows Server to have no support for Itanium-based computers since Windows NT 4.0. Windows Server 2012, now in its second release (Windows Server 2012 Release 2) includes Foundation, Essentials, Standard and Datacenter, and does not support IA-32 or IA-64 processors.

Windows Server 2012

Active Directory (AD) is a Microsoft brand for identity-related capabilities. In the on-premises world, Windows Server AD provides a set of identity capabilities and services, and is hugely popular (88% of Fortune 1000 and 95% of enterprises use AD). This topic includes all things Active Directory including DNS, Group Policy, DFS, troubleshooting, ADFS, and all other topics under the Microsoft AD and identity umbrella.