Re: Urgent: All AD users are locked out
- From: "JPolicelli [MVP-DS]" <JPolicelliMVPDS@xxxxxxxxxxxxxxxxxxxxxxxxx>
- Date: Mon, 12 Jan 2009 12:11:58 -0500
Sounds like you may have a virus on your network or someone is trying to crack passwords...
Can you logon to any of your domain controllers? If so, check the security log for event ID 644, which is logged when an account is locked. Specifically, look at the value for Caller Machine Name, which should tell you where the account lockouts are originating from.
If you cannot logon to any of your DCs, then try rebooting in DSRM and accessing the event log for the above information.
--
JPolicelli, MVP - Directory Services
http://www.policelli.com
http://policelli.com/blog
This posting is provided AS IS with no warranties and confers no rights. Always plan and test.
----
"Mhd" <Mhd@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message news:07B0EF7C-EA9E-45AB-A236-1B3E450BD205@xxxxxxxxxxxxxxxx
Dears;
we have an w2k3 domain environment, with more than 300 users account.
Today morning all users are locked out frequently.
Please help to sort out this critical problem
thx
.
- Follow-Ups:
- Re: Urgent: All AD users are locked out
- From: Mhd
- Re: Urgent: All AD users are locked out
- References:
- Urgent: All AD users are locked out
- From: Mhd
- Urgent: All AD users are locked out
- Prev by Date: Re: fSMORoleOwner in CN=Infrastructure DomainDNSZones & ForestDNSZ
- Next by Date: Re: FSMO Placement
- Previous by thread: Urgent: All AD users are locked out
- Next by thread: Re: Urgent: All AD users are locked out
- Index(es):
Relevant Pages
|
Loading
