troubleshooting Question

User account locks out repeatedly on our network after password change

Avatar of bankadmin
bankadminFlag for United States of America asked on
Active Directory
29 Comments1 Solution180 ViewsLast Modified:
I have a user account that is locking out repeatedly every couple of mins I was able to track it down to a server on our network attempting to autheticate with the user account. There isnt any reason why this should be happening I went through every service on the server and the name is not associated with it in any way it started when the accounts password was changed. the logs dont give me much detail at all as to what service/process is trying to use that account I have ran malwarebytes on it and a couple of reg settings were flagged and I removed them our virus scans have not found anything either. Just to verify I did shut the server down after hours and the account did not lock until I started the server backup so its only this one device. Any ideas of what else to look for?
ASKER CERTIFIED SOLUTION
bankadmin

Our community of experts have been thoroughly vetted for their expertise and industry experience.

Join our community to see this answer!
Unlock 1 Answer and 29 Comments.
Start Free Trial
Learn from the best

Network and collaborate with thousands of CTOs, CISOs, and IT Pros rooting for you and your success.

Andrew Hancock - VMware vExpert
See if this solution works for you by signing up for a 7 day free trial.
Unlock 1 Answer and 29 Comments.
Try for 7 days

”The time we save is the biggest benefit of E-E to our team. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange.

-Mike Kapnisakis, Warner Bros