My Active Directory account gets locked out by Vcenter all the time.

My AD admin account, which I use everywhere in my environment, keeps getting locked out by the vCenter IP, how can I find out what is locking it ???
LVL 1
NAMEWITHELD12Asked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Richardson PortoSenior Infrastructure SpecialistCommented:
Check out if the following VMware KB article helps you to find the problem source: https://kb.vmware.com/selfservice/microsites/search.do?language=en_US&cmd=displayKC&externalId=2001703
gheistCommented:
Because you run AD integration plugin as your user with stored password.
E ATech LeadCommented:
check your account lockout policies settings in SSO config, for more info see:

VMware KB: Configuring and troubleshooting vCenter Single Sign On password and lockout policies for accounts

also have a look at this KB:

VMware KB: Active Directory account locks out due to repeated failed login attempts from vCenter Server  



Check for any scripts or scheduled tasks in the vCenter server which may be trying to get executed using your old domain admin password due to which the lock occurs.

Try following this.

In Veeam Backup & Replication ->Main console -> Infrastructure VMware vSphere ->your vcenter ip

right-click vCenter Server addre -> Properties,
change the password,
save server configuration

Hope this helps!

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Tahir QureshiSystem AnalystCommented:
try to use Microsoft utility  called Lockoutstatus.msi

https://www.microsoft.com/en-au/download/details.aspx?id=15201

The above utility will provide a list of domain controller and bad password count

connect to your domain controller and search for event ID 4740

Now, let’s take a closer look at 4740 event. This can help us troubleshoot this issue.

Log Name      Security
Source      Microsoft-Windows-Security-Auditing
Date      MM/DD/YYYY HH:MM:SS PM
Event ID      4740
Task Category      User Account Management
Level      Information
Keywords      Audit Success
User      N/A
Computer      COMPANY-SVRDC1
Description      A user account was locked out.
E ATech LeadCommented:
Answer provided, no further question from author. Please post back if you need any assistance.

Thanks,
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Active Directory

From novice to tech pro — start learning today.