We have seen this caused by users not knowing the difference between a Terminal Services Disconnect, versus logoff. They would disconnect and leave their session active for days. Eventually, they would change their password and now the TS session has bad credentials.
We have also seen some sort of caching going on with Internet Explorer. Internet Explorer would hit proxy 2.0 servers with bad credentials and lock the account. On some occasions, we found users with AIM or some sort of Weather forecast utility that would startup as soon as they logged on. It would go out through proxy to the Internet and lock the account. Bob -----Original Message----- From: Tim George [mailto:[EMAIL PROTECTED]] Sent: Friday, June 21, 2002 12:59 PM To: NT 2000 Discussions Subject: RE: Password Reset in Windows Ok, so I assume when they log into their laptops, that they log on with a domain account -- and they are changing the password at the domain level? Is there anything in the event logs for these users -- i.e. audit authentication failures? Also, I know that occasionally I map drives to a server and check the option to reconnect at logon and to use specify the username and password to connect with (usually due to needing to map with another account)... Could there be something like this that has the account info as well? Other than that, I haven't had any new brainstorms yet as to causes of this... Does this happen to everyone when they change their password, or only some people? I'd start looking into things that the users have in common and what would be authenticating with AD that might have old passwords stored.... -Tim -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of g Sent: Friday, June 21, 2002 12:54 PM To: NT 2000 Discussions Subject: Re: Password Reset in Windows Thanks for your help Tim. I had approached the problem from this angle and didn't get anywhere because my clients are not running services with stored passwords. If anyone has any suggestions they will like to throw out that will be great Thank you all ----- Original Message ----- From: "Tim George" <[EMAIL PROTECTED]> To: "NT 2000 Discussions" <[EMAIL PROTECTED]> Sent: Friday, June 21, 2002 11:32 AM Subject: RE: Password Reset in Windows > A similar scenario was just discussed in the last week :) > > Make sure that the users do not have any services, etc running > under their account with stored passwords. If they do, these items > will eventually exceed the number of retries and lock out the account. > > The other post dealt with a backup program with a user's credentials > stored in it so that every morning the user's account was locked out > due to the backups (which most likely were failing as well) > > -Tim > > > -----Original Message----- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED]]On Behalf Of Lady Chie > Sent: Friday, June 21, 2002 9:31 AM > To: NT 2000 Discussions > Subject: Password Reset in Windows > > > Hey Guys > My first post so please forgive me if this has been covered before. I'm > running Active Directory and my clients are running windows 2000 pro. When > they change their passwords and sign in to their pcs, they get authenticated > and login okay. After a while they cannot use any network resources because > their accounts get locked out. This happens religiously and i was wondering > if anybody had any clues as to why it is occuring. > > Thanks bunches > > > > _________________________________________________________________ > Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp. > > > ------ > You are subscribed as [EMAIL PROTECTED] > Archives: http://www.swynk.com/sitesearch/search.asp > To unsubscribe send a blank email to %%email.unsub%% > > > ------ > You are subscribed as [EMAIL PROTECTED] > Archives: http://www.swynk.com/sitesearch/search.asp > To unsubscribe send a blank email to %%email.unsub%% > ------ You are subscribed as [EMAIL PROTECTED] Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe send a blank email to %%email.unsub%% ------ You are subscribed as [EMAIL PROTECTED] Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe send a blank email to %%email.unsub%% CONFIDENTIALITY NOTICE: This E-Mail is intended only for the use of the individual or entity to which it is addressed and may contain information that is privileged, confidential and exempt from disclosure under applicable law. If you have received this communication in error, please do not distribute and delete the original message. Please notify the sender by E-Mail at the address shown. Thank you for your compliance. ------ You are subscribed as [email protected] Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe send a blank email to [EMAIL PROTECTED]
