Hi there, I was asked by auditor to enable the Active Directory Default Domain Policy - Password Policy and Account Lockout Threshold. I set the account lockout threshold to 3 invalid attempt. After 2 hours I noticed that a lot of accounts had been lockout. I suspect it due to virus attack. I revert back the setting to 0 invalid attempt. However, it seems like it is not working. The accounts get lockout again. I tried sync the AD replication, enforce gpupdate /force but still cannot work. Any idea? Please help.1 person needs an answerI do too