- VPN
- Windows Server 2012
- Cisco
Users AD account locks out after logging into VPN
We a couple of users that each time they login to the VPN, their AD accounts get locked out after they login. (server 2012 R2)
So there able to login but their AD do lockout after that.
If we reset their accounts after a few minutes their AD account locks out again.
They are using Cisco VPN.
Anyone have any idea on why it keeps locking out their AD account when logging into the VPN?
If they don't login to the vpn, their AD does not ever lock.
So there able to login but their AD do lockout after that.
If we reset their accounts after a few minutes their AD account locks out again.
They are using Cisco VPN.
Anyone have any idea on why it keeps locking out their AD account when logging into the VPN?
If they don't login to the vpn, their AD does not ever lock.
There are tools, the likely issue is that the user eother have stale credentials for resources saved.
Run control keymgr.dll to see stored shares/credentials.
There is a tool account lockout that can help track this down.
Run control keymgr.dll to see stored shares/credentials.
There is a tool account lockout that can help track this down.
We a couple of users that each time they log in to the VPN, their AD accounts get locked out after they log in. (server 2012 R2) So there able to log in but their AD does lockout after that.
I think I've seen your thread before, please keep in mind the following for troubleshooting purposes.
1- Talk to one of the users and ask them when was the last time they changed the password. If they answer " I changed it a few days ago or yesterday, then your issue lies on the credential being cached by any mapping/windows service.
2- A simple resolution for you is, ask the user for the old password and update the user object with the new old password. After that reboot the computer or anything she has and tries over. Also, if you are using exchange on your premise, tell her/him to shut off its phone/iPad to resync the credentials.
-
![]()
received a Solution
Can't RDP into 2012 R2 across VPN -
![]()
wrote an Article
![]()
IPsec VPN Configuration On Cisco IOS XE - Part 7 - Single Tier Dynamic Multipoint VPN (DMVPN) Cloud
-
![]()
created a Video
![]()
Introducing a Windows 2012 Domain Controller into a 2008 Active Directory Environment
-
Explore Cloud Class® ![]()
Certification: MCSA MCSE Microsoft Certified Solutions Associate & Systems Engineer - Administering Windows Server 2012 R2
Premium Content
You need an Expert Office subscription to comment.Start Free Trial