RE: [ActiveDir] AD user account keeps getting locked out

[Pelle, Joe]

Hey – thanks to all who replied – the user was in a rush to catch an early flight back home and couldn’t wait … so I ended up changing her logon and the problem has gone away.  I just downloaded the tools mentioned below – so thanks for link!  Have a good one!   Joe Pelle Senior Infrastructure Architect Information Technology Valassis / IT 19975 Victor Parkway Livonia, MI 48152 Tel 734.591.7324  Fax 734.632.6151 [EMAIL PROTECTED] http://www.valassis.com/   This message may include proprietary or protected information. If you are not the intended recipient, please notify me, delete this message, and do not further communicate the information contained herein without my express written consent.   From: Rick Kingslan [mailto:[EMAIL PROTECTED] Sent: Saturday, March 26, 2005 10:43 PM To: ActiveDir@mail.activedir.org Subject: RE: [ActiveDir] AD user account keeps getting locked out   Joe –   Run into this issue all of the time.  Usually, it has to do with an application or some other application / process that either uses or caches the user’s credentials.  If the password is changed, the application or process needs to be changed as well.   My recommendation: The Account Lockout and Management tools.  The most important part of this set is a .dll that needs to be loaded on the DCs and adds an additional tab onto the user properties in Active Directory Users and Computers.  It doesn’t need to be on all of the DCs.  Just a couple that you would reference most frequently.  With the tool you can determine what DC locked out the user, and then go to the DC that has the actual record of the lockout.  Having the firsthand events would be essential.  Also in the tool kit is a .dll that can be loaded on the client workstation that will gather added information into a log.  The log will pinpoint what on the client system might be causing the problem.   Also included is EventCombMT (for parsing the event logs for specific info) ALoInfo (lists all user accounts and the age of the password) NLParse (used to get info from the NetLogon files), plus a few more.   Find the Account Lockout and Management tools here:   http://www.microsoft.com/downloads/details.aspx?FamilyID=7af2e69c-91f3-4e63-8629-b999adde0b9e&DisplayLang=en   -rtk   From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Pelle, Joe Sent: Friday, March 25, 2005 12:29 PM To: ActiveDir@mail.activedir.org Subject: [ActiveDir] AD user account keeps getting locked out   Hello!   I have a user account that continuously keeps getting locked out.  We’ve reset the user’s password (multiple times), took the computer off of the domain, renamed the computer, put it back on the domain, etc.  This user works primarily out of her home office but is at our headquarters yesterday and today.  She had a junior admin reset her password and install some software (adobe) yesterday and has had the problem ever since.  Anyone been done this road before?   Joe Pelle Senior Infrastructure Architect Information Technology Valassis / IT 19975 Victor Parkway Livonia, MI 48152 Tel 734.591.7324  Fax 734.632.6151 [EMAIL PROTECTED] http://www.valassis.com/   This message may include proprietary or protected information. If you are not the intended recipient, please notify me, delete this message, and do not further communicate the information contained herein without my express written consent.