Hello Team,
could you any one tell me what would be the best way to resolve account lockout issue for ad account.
We have around 34 domain controllers running on windows server 2008 R2 OS, on daily basis we are getting alert/incident
for account lockout. I have tried below solution but it would not reaching right way.
- Usees tool account lockout and EventCombMT.exe for finding the machine which is responsible for account lockout
- run ALockout.dll. on client's computer to determine a process or application that is sending wrong credentials.
- Unmap and remap all the network drives connected on user pc, delete cached credentials by using command : rundll32.exe keymgr.dll,KRShowKeyMgr.
- Check for any external devices (ex phones) with an application configured to use ad-one credentials.