realtimer
asked on
Why did Active Directory account get disabled?
Hello,
A high-profile user was unable to access network resources this morning. Sounds like he was already logged on to the network for some time. But he stopped being able to access network resources. At this point he rebooted his PC. After reboot, attempts to logon returned the following message:
The referenced account is currently locked out and may not be logged on to
Issue was quickly addressed by re-enabling this account. However this is not a user who is likely to mistype his credentials multiple times. I'm concerned about a potential attempt to login with his account. Where can I check in Event Viewer or other tool to gather any information that may be of help to gather some detail?
Thanks in advance.
Regards,
Real-Time
A high-profile user was unable to access network resources this morning. Sounds like he was already logged on to the network for some time. But he stopped being able to access network resources. At this point he rebooted his PC. After reboot, attempts to logon returned the following message:
The referenced account is currently locked out and may not be logged on to
Issue was quickly addressed by re-enabling this account. However this is not a user who is likely to mistype his credentials multiple times. I'm concerned about a potential attempt to login with his account. Where can I check in Event Viewer or other tool to gather any information that may be of help to gather some detail?
Thanks in advance.
Regards,
Real-Time
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
I've gone through some of these steps and am still working on trying to isolate the source of the problem.
In the interim, what can I do to ensure that this one account does not get disabled regardless of the number of failed login attempts?
Thank you.