RE: account lockout problems
From: bdoub (ntbug2000@yahoo.com)Date: 03/20/02
- Previous message: John Munyan: "Between Forest IPSec Implementation?"
- In reply to: Markgraf, Frank: "AW: account lockout problems"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "bdoub" <ntbug2000@yahoo.com> To: "Markgraf, Frank" <frank.markgraf@ltg-mailaender.de>, "Focus-Ms@Securityfocus. Com" <focus-ms@securityfocus.com> Date: Wed, 20 Mar 2002 09:23:22 +0530
Yes, the "user must logon before password change" is activated. But that
just makes the difference once the account gets locked out. I am much more
interested in finding out why the account gets locked out in the first
place.
Thanks,
Barath
-----Original Message-----
From: Markgraf, Frank [mailto:frank.markgraf@ltg-mailaender.de]
Sent: Tuesday, March 19, 2002 10:23 PM
To: 'bdoub'; Focus-Ms@Securityfocus. Com
Cc: barath.br@ajubanet.net
Subject: AW: account lockout problems
Hi,
Is it possible that you activated the "user must logon bevore pasword
change" key?
We have the same problem on some workstations and i think the cause is the
syncronisation between the domain controllers.
mit freundlichen Grüssen
Frank Markgraf
LTG Mailänder GmbH
Tel. +49 711 8201 9156
frank.markgraf@ltg-mailaender.de
Wernerstrasse 119-129
70435 Stuttgart
-----Ursprüngliche Nachricht-----
Von: bdoub [mailto:ntbug2000@yahoo.com]
Gesendet: Dienstag, 19. März 2002 03:27
An: Focus-Ms@Securityfocus. Com
Cc: barath.br@ajubanet.net
Betreff: account lockout problems
Need some help folks,
Server : NT 4.0 sp6a
Clients: win2k prof sp2
Problem Description:
Account policies is setup to change passwords once
in 'X' days with a password history setup.
User gets prompted to change password when
nearing the deadline. User hits 'yes - change
password now' - account gets locked out. Instead if
the user hits 'no - will change password later' and hits ctrl-alt-del and
chooses 'change password' option, the user is able to change the password.
Please Note:
1. I have already looked at articles q263821, q275508,
Q160900 on the MS knowledge base site as mentioned
in the earlier emails on the list, but they all
seem to list problems with a 2k domain, not a NT
domain as is the case with our servers. Most of the other articles on the
technet site also seem to talk more about
2k servers than NT - with respect to this issue.
2. There are no processes running under the user credentials
at startup.
3. And yes, it happens with all the users and I mean right
from the admins to anyone in the users group. No class distinctions with MS
:)
If there is still some ambiguity, shoot me back an
email at this address.
Thanks,
Barath
_________________________________________________________
Do You Yahoo!?
Get your free @yahoo.com address at http://mail.yahoo.com
_________________________________________________________
Do You Yahoo!?
Get your free @yahoo.com address at http://mail.yahoo.com
- Previous message: John Munyan: "Between Forest IPSec Implementation?"
- In reply to: Markgraf, Frank: "AW: account lockout problems"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
