Re: problems with a domain admin account

From: Tim Hines, MCSE (nupe009@carolina.rr.com)
Date: 05/31/02 

From: "Tim Hines, MCSE" <nupe009@carolina.rr.com>
Date: Thu, 30 May 2002 23:12:33 GMT

Enable netlogon logging by editing the the following key :

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Netlogon
\Parameters\dbflag= 0x2080FFFF
 restart the netlogon service. This needs to be done on all DCs, a file will
be created in winnt\debug called netlogon,log.

Review the file it will show all logons and account lockouts. I've
including an error code listing below:

  0xC0000234 User logon with Account Locked
  0xC000006A User logon with Misspelled or bad Password
  0xC0000072 User logon to account disabled by Administrator
  0xC0000193 User logon with Expired Account
  0xC0000070 User logon from unauthorized workstation
  0xC000006F User logon Outside authorized hours
  0xC0000224 User logon with "Change Password at Next Logon" flagged
  0xC0000071 User logon with Expired Password
  0xC0000064 User logon with Misspelled or Bad User Account

  --
  Tim Hines, MCSA, MCSE (2000 & NT4)

"Sandra L Miller" <slm@cs.arizona.edu> wrote in message
news:3CF6A828.36EECDB0@cs.arizona.edu...
> Help please.
>
> We have a Windows domain, with 2 domain controllers running Windows
> 2000, and 200+ workstations running mostly Windows 2000 (one NT and
> some XPs). As per Microsoft's recommendation, we changed the name
> of the original Administrator account to something else (call it ad1)
> and rarely use the account. We created a second administrator account
> (call it ad2) which we use daily for administration. We have always
> changed the password for ad2 monthly.
>
> The problem...
> Recently, we have been having problems when we change the password
> for ad2. The account becomes locked out, over and over. I keep
> unlocking it, using the ad1 account, but after 15-20 minutes, it is
> locked out again. We don't have a policy in place to lock out accounts
> after x number of failed login attempts, so I don't THINK that's the
> problem. Does anybody have any ideas? My boss is getting annoyed at
> me :-( (he can't ever remember the password for ad1).
>
> Thanks for any help.
>
> --
> Sandra L Miller
> Department of Computer Science
> University of Arizona

Relevant Pages

  • Re: problems with a domain admin account
    ... Enable netlogon logging by editing the the following key: ... Review the file it will show all logons and account lockouts. ... 0xC000006A User logon with Misspelled or bad Password ... > of the original Administrator account to something else ...
    (microsoft.public.win2000.security)
  • Re: Server 2003 A/D Admin username changes on its own
    ... >>Windows 2003 Server? ... >>Domain Administrator's account properties reverts back ... >>After DCPROMO was run, the administrator account was ... >>properties for the LABAdmin account and the User logon ...
    (microsoft.public.win2000.active_directory)
  • Re: Cant logon to Windows
    ... Administrator Account, so I can't use it to log on. ... If no user logon appears in Safe Mode ... where you can type in the user account name "Administrator" (or click on ...
    (microsoft.public.windowsxp.security_admin)
  • Re: ISS scan account continually locking out
    ... > 0xC0000064 User logon with Misspelled or Bad User Account ... > The most likely reason the accounts are locking out is that the ISS ... > To verify that the account lockouts are definetly coming from the ISS ...
    (microsoft.public.windowsxp.security_admin)
  • Re: how to map
    ... let me explain better my need, i got one domain user account that is shared by lots of people in different computers. ... for example, when user logon using account1 in computerA, will map driveA, but when user logon using account 1 in computerB i want to map driveB and not A. is there any way i can do that automatically? ... is there any way i set set a policy applied to a computer instead a user? ...
    (microsoft.public.windows.group_policy)