Hello,
Bipin wrote:
> I am working in a windows 2003 domain , one day morning all users try
> to login domain around 100 users get same message as "domain account
> lockout" .I check with user tab , account was lockout . Why this
> happen??
> How we can rectify these issues further??
> How I can open account lockout for multiple users at a time??
this may happen, if a virus or other malware performs a brute force password
attack to all user accounts. If the security settings allow only a certain
number of wrong password attempts, this causes the lockout. So while
securing the accounts you allow a Denial of Service attack with this
setting. Check the event log of your Domain controllers for the source of
the login attempts and try to close this.
Another feature, which helps an attacker, is the allowing anonymous account
enumeration. This can also be disabled, so that only internal users can
attempt to access the account list, or well known accounts be attacked.
The links
http://www.microsoft.com/technet/pro.../bpactlck.mspx
http://searchsecurity.techtarget.com...068908,00.html
may give you something more to read.
Best greetings from Germany
Olaf
Similar Threads
Linear Mode
