Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Mike Lewis on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Accounts keep locking users out!

Status
Not open for further replies.
miggins

miggins

IS-IT--Management
Nov 28, 2001
4
0
0
GB
800 accounts on domain (mixed mode).
One account locks out every time the user logs in.
Another account locks out maybe a dozen times per day (still trying to find a pattern).

Both accounts have been moved to AD on 2000 server (this problem was happening before).


 
Sort by date Sort by votes
Have you tried turning on auditing to see what's happening?
 
Upvote 0 Downvote
BTNet is on the right track.. turn on your security auditing and find out which computer the failing is coming from. Often, I get users that lock out because they changed their password but were logged on 2 computers and forgot about the first one. Then the first one will keep trying with the old password, hence, getting locked out. It can apply also if you have tasks or services that start up with a specific username and password... they must all be checked to make sure that they are using the correct password. Better to use service accounts for those types of username password type services.
 
Upvote 0 Downvote
Where do you turn on security auditing?

Thanks,

Royce
 
Upvote 0 Downvote
I believe it is AD users and computers and then the policies menu and audit.

Josh
 
Upvote 0 Downvote
Thanks for the help folks...
I am going to looking at the auditing side first.
Will keep you informed (just had some customer service talks.....)
 
Upvote 0 Downvote
When that happened to my account, it was as ReddLefty said, I was logged into a few other servers and forgot all about it. After changing my password the repeated lockouts began because those servers with me still logged in it were trying to renew my ticket with the old password and failing. Perhaps a quicker way than auditing (though it's a good idea to have it on anyway) is to ask the user what machines they have been logging into, then checking to make sure that they aren't still logged into any of them.


- Just a little ol' MCP at Solien Technology
-
 
Upvote 0 Downvote
That's always the first question I ask my users when they just changed their password and they get locked out. 99% of the time they go: "Oh yeah.... I forgot about that machine..." ..

hehe.. Life of an admin.
 
Upvote 0 Downvote
Sorry about the delay but........
Still having problems, but now there are more users affected!
Tried all the ideas submitted (many thanks), still not working.
Put auditing on security, and watched a user.
When he right clicked his IE Icon it sent a request for authentication and locked him out.

 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

DrB0b
  • Locked
  • Question
Windows 2016 IIS FTP server with a ton of user accounts
Replies
4
Views
145
DrB0b
DrB0b
tviman
  • Locked
  • Question
How to restrict RDP users to the desktop 2
Replies
13
Views
118
strongm
strongm
goombawaho
  • Locked
  • Question
How to open Change user role for user accounts wizard
Replies
2
Views
51
goombawaho
goombawaho
kolob4all
  • Locked
  • Question
Restrict AD users to login to specific computers
Replies
0
Views
33
kolob4all
kolob4all
abm-support
  • Locked
  • Question
Essentials Server 2012 not showing users or devices
Replies
0
Views
44
abm-support
abm-support

Part and Inventory Search

Sponsor

Back
Top