Ok,
So I recently changed the password on one of my domain admin accounts and now ever 10 minutes I have to unlock the account. Can someone help me with a way that I can find if it's a service or what that's causing this?
Full Version: Mysterious Account Lookout
Sounds like you have a service on a machine that was configured to use the account. That's pretty common, although finding won't be as easy as knowing what the problem is 
. Using logon auditing on your DC's will likely tell you which machine holds the offending service or app.
. Using logon auditing on your DC's will likely tell you which machine holds the offending service or app.
I had a similar problem with my domain account, where I had my password changed on the AD. Then before I could log in, it would say it was locked out. My problem was caused by me having an email client (Tbird) open still and it was trying to get my mail the the old password!
Try using lockoutstatus.exe. It will help you see bad pasword counts in real-time and which DCs the account is authenticating against
http://www.microsoft.com/downloads/details...;displaylang=en
EDIT:
Another thought would be do you have any Macs in your environment using Entourage? As i know that caches credentials and is not very good at alerting you when it is using a bad password.
http://www.microsoft.com/downloads/details...;displaylang=en
EDIT:
Another thought would be do you have any Macs in your environment using Entourage? As i know that caches credentials and is not very good at alerting you when it is using a bad password.
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.