Re: Tracking Account Lockouts?
From: Laura E. Hunter \(MVP\) ("Laura)
Date: 10/21/04
- Next message: Laura E. Hunter \(MVP\): "Re: Request Expert Advise"
- Previous message: Paul Nelson: "Re: connecting osx to the domain"
- In reply to: Jason Rosolowski: "Tracking Account Lockouts?"
- Messages sorted by: [ date ] [ thread ]
Date: Thu, 21 Oct 2004 12:44:17 -0400
If the users are attempting to sign onto a domain using their domain
account, the logon attempt will show up in the Security log of your domain
controller that holds the PDC Emulator role. The only entries in the local
machine accounts would be for local logons, not domain.
-- ***************** Laura E. Hunter - MVP Replies to Newsgroup only All advice offered as-is, no warranties expressed or implied "Jason Rosolowski" <jason.rosolowski@northporthealth.com> wrote in message news:%23bng0r4tEHA.3524@TK2MSFTNGP15.phx.gbl... >I have a policy active to lockout an account if you have 20 failed attempts >in 30 minutes. Most of my users, no problem, but I have a couple users >where I'm having a problem with this. I'm thinking it's maybe a service, >or process, something along those lines, but I'm not able to track it down. > > Is there some logging that I can put in place on the DC to show me what > machine caused the lockout to occur at? I've reviewed the security log on > the users machine, and I don't see where they have failed login. I do > have auditing turned on on the PCs via group policy. Maybe I don't have > the proper logging level? > > Anyway, if you need more info to help in my problem, please let me know. > > Thanks! > > -- > Jason Rosolowski > Systems Administrator > Northport Health Services >
- Next message: Laura E. Hunter \(MVP\): "Re: Request Expert Advise"
- Previous message: Paul Nelson: "Re: connecting osx to the domain"
- In reply to: Jason Rosolowski: "Tracking Account Lockouts?"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
