Re: Account Lockout not being applied

From: "shane.pinnell@xxxxxxxxx" <shane.pinnell@xxxxxxxxx>
Date: 9 Mar 2007 21:45:13 -0800

On Mar 9, 6:15 pm, "Joe Richards [MVP]" <humorexpr...@xxxxxxxxxxx>
wrote:

Are you setting it in the Default Domain Policy? If not, that is why it
isn't working, it can only be set at the domain level currently.

If you are, then it sounds like you may have some replication issues
either in your AD or in FRS.

--
Joe Richards Microsoft MVP Windows Server Directory Services
Author of O'Reilly Active Directory Third Editionwww.joeware.net

---O'Reilly Active Directory Third Edition now available---

http://www.joeware.net/win/ad3e.htm

shane.pinn...@xxxxxxxxx wrote:

I am having a weird problem. I have set the account lockout threshold
to 0 to disable it. Unfortunately, it is not being applied! I also
tried setting it to something higher than five, and the accounts are
still locking out after 5 invalid attempts. Any help would be greatly
appreciated.

It was a replication issue! So frustrating!

.

References:
- Account Lockout not being applied
  - From: shane.pinnell@xxxxxxxxx
- Re: Account Lockout not being applied
  - From: Joe Richards [MVP]

Prev by Date: Re: Account Lockout not being applied
Next by Date: Re: LSASS.Exe problem. PC unable to boot up!
Previous by thread: Re: Account Lockout not being applied
Next by thread: please publish following add to help our community:
Index(es):
- Date
- Thread

Relevant Pages

Re: Active Directory - security boundaries
... If you are just replicating NOS info around, it doesn't have the churn the other data does and there isn't much to it so it would considerably lighten the replication load. ... Joe Richards Microsoft MVP Windows Server Directory Services ... When Microsoft moved to the forest model, the domain became a so so policy boundary and so so replication boundary. ...
(microsoft.public.windows.server.active_directory)
Re: Replication protocol (IP or SMTP)
... Joe Richards Microsoft MVP Windows Server Directory Services ... I just get the excerpt from the MOC 2279 - Planning, Implementing, and Maintaining W2003 Active Directory Infrastructure, the statement is as ... "SMTP supports replication of the schema, configuration, and GC between sites and between domains. ...
(microsoft.public.windows.server.active_directory)
Re: PDC EMU ?
... Depending on your replication topology and timings this change could take minutes to weeks to replicate fully throughout your domain. ... Joe Richards Microsoft MVP Windows Server Directory Services ... With the avoidpdc set if user changes password in site 2, no message is sent to pdc em in ste 1 so the dc in site 3 isnt "immedialtely" told, but will site 3 be told next time replications happens? ... All AvoidPDCOnWan does is tell the local DC not to contact the PDC in the event of password changes or authentication failures. ...
(microsoft.public.windows.server.active_directory)
Re: AD Monitoring Tools?
... Joe Richards Microsoft MVP Windows Server Directory Services ... I am handling this issue with QoS techniques but want to monitor the health of AD replication with a simple to use reporting tool. ... Someone out there must have built a "control panel" with status on AD links and replication status; any recommendations are appreciated in advance. ...
(microsoft.public.windows.server.active_directory)
Re: WINS replication packet identification ... ?
... WINS replication traffic is not documented. ... Joe Richards Microsoft MVP Windows Server Directory Services ... Author of O'Reilly Active Directory Third Edition ... help me to know contents of WINS replication payload. ...
(microsoft.public.windows.server.active_directory)