?
Solved

Azure domain controller issue

Posted on 2016-08-29
4
Medium Priority
?
81 Views
Last Modified: 2016-09-08
Hi Experts

I have a customer who his admin account is being locked from AD very random. After checking all security logs, more specifically for 4740 events, we can identify the source of the locked accounts appears to be a domain controller in Azure. My client has a hybrid AD-Azure and Office 365- Exchange 2010.



Any ideas on why the 4740 event is logged in a DC in Azure? My client has closed all RDP sessions from the domain, and even the dc in Azure, but his admin account keeps being locked very random, and the source of the locked account is the 2 DCs in Azure



Any ideas on how to resolve this issue?



Please, provide instructions step by step to resolve the issues, and an explanation on why the DC in Azure seems to be the source of the locked account?
0
Comment
Question by:Jerry Seinfield
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
4 Comments
 
LVL 6

Accepted Solution

by:
Ganesamoorthy S earned 2000 total points
ID: 41775080
enable netlogon logs on source Domain Controller in Azure to locate the affending IP

http://www.windowstricks.in/2016/06/account-lockout-caller-computer-name-blank-cisco-workstation-domain-controller.html
0
 

Author Comment

by:Jerry Seinfield
ID: 41775104
is this applicable for Windows server 2012 R2 domain controllers in Azure and on Premises?
0
 
LVL 6

Expert Comment

by:Ganesamoorthy S
ID: 41775198
Yes, it's applicable for Domain controllers in in Azure and on Premises
0
 

Author Comment

by:Jerry Seinfield
ID: 41790189
All good
0

Featured Post

Visualize your virtual and backup environments

Create well-organized and polished visualizations of your virtual and backup environments when planning VMware vSphere, Microsoft Hyper-V or Veeam deployments. It helps you to gain better visibility and valuable business insights.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This process allows computer passwords to be managed and secured without using LAPS. This is an improvement on an existing process, enhanced to store password encrypted, instead of clear-text files within SQL
It’s time for spooky stories and consuming way too much sugar, including the many treats we’ve whipped for you in the world of tech. Check it out!
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…
There are cases when e.g. an IT administrator wants to have full access and view into selected mailboxes on Exchange server, directly from his own email account in Outlook or Outlook Web Access. This proves useful when for example administrator want…

650 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question