Auditing Logon Events
From: Barry (Barry_at_discussions.microsoft.com)
Date: 05/25/05
- Next message: Griff: "EFS Certificate Self Signed Vs. User Cert"
- Previous message: Roger Abell: "Re: Authenticated users permissions"
- Next in thread: Roger Abell: "Re: Auditing Logon Events"
- Reply: Roger Abell: "Re: Auditing Logon Events"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Wed, 25 May 2005 08:01:12 -0700
Hi,
I am having some trouble with the account lockout policy on my W2K3 Domain
with W2K clients.
I have a policy which says accounts should be locked out after 4
unsuccessful logon attemps and am finding that our users are often locked out
of their accounts without having entered an incorrect password even once.
I would like to audit the un-successful logon attempts on the Domain to
determine why the accounts are being locked but am led to believe that this
can only be done on each local computer and there is no centralised log for
monitoring Domain logons.
Can you clarify this for me and maybe direct me on how I might determine why
the accounts are being locked.
- Next message: Griff: "EFS Certificate Self Signed Vs. User Cert"
- Previous message: Roger Abell: "Re: Authenticated users permissions"
- Next in thread: Roger Abell: "Re: Auditing Logon Events"
- Reply: Roger Abell: "Re: Auditing Logon Events"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
