This page (revision-1) was last changed on 29-Nov-2024 16:16 by UnknownAuthor

Only authorized users are allowed to rename pages.

Only authorized users are allowed to delete pages.

Page revision history

Version Date Modified Size Author Changes ... Change note

Page References

Incoming links Outgoing links
LOCKOUT
LOCKOUT

Version management

Difference between version and

At line 1 added 20 lines
!! LOCKOUT (or UF_LOCKOUT flag)
This is technically the 0x00000010 bit in the [User-Account-Control Attribute] for [Microsoft Active Directory].
The value denotes the condition implies the Active Directory account is locked from [Intruder Detection].
Sometimes this concept is referred to as [Intruder Detection]. This is __not__ the condition where an account is [Administratively Disabled]
!! [Active Directory Account Lockout]
The account is currently locked. The value [Lockouttime] attribute can be set to 0 to unlock a previously locked account.
When trying to perform a logon the [ERROR_ACCOUNT_LOCKED_OUT] [Microsoft Response Code] is provided.
! Warning
The LOCKOUT bit is only reset when the account is logged onto successfully. This implies that the LOCKOUT may be set, yet the account is __not__ locked out. The only accurately method to determine if the account is locked out, you must add the [Lockout-Duration] to the [lockouttime] and compare the result to the current time. Be carful as depending on how you are reading the values you may need account for local time zones and daylight savings time.
Some more insight is provided on our page [Active Directory Account Lockout].
!! More Information
There might be more information for this subject on one of the following:
[{ReferringPagesPlugin before='*' after='\n' }]
This page (revision-1) was last changed on 29-Nov-2024 16:16 by UnknownAuthorTop