ActiveDirectory

Monitor Account Lockouts Active Directory

Mobile Technology Meets the Business Sector
Brandon LeeDecember 8, 2015Last Updated: January 11, 2021
2 minutes read
netwrix_05
netwrix_05

One of the time wasters of a system administrator can be chasing down account lockouts and why they happen. ย Many administrators have felt the pain of parsing through logs, etc to try and figure out what is going on with account lockouts if they are unusually high for a particular account. ย There are many solutions out there for account lockout monitoring many of which can be done fairly eloquently with powershell, however, if you have a mix of older DCs as well on which you don’t really have the ability to enable powershell without some pain, your options start to be minimized.

I wanted to do a quick spotlight on a tool that I am sure many have stumbled across in times past and may even be using called Account Lockout Examiner made by Netwrix. ย The great thing about this tool is that it is completely free. ย I am skeptical when I see the “free” designation on certain tools as there is usually a catch to the free designation. ย However, after using this tool and installing in a lab and test production environment, I was pleasantly surprised that it doesn’t seem to be limited in any way.

I won’t bore anyone with the install of this product as it is a simple and straightforward install. ย Once installed, there are very straightforward settings to get things setup and operating correctly. ย Basically to get up and running you:

  • Add your domain including domain controller (PDC) or all domain controllers
  • Setup your email alerts by populating email address and SMTP server address

Below are screenshots of the settings found within the program once installed:

netwrix_01
 netwrix_02
 netwrix_03
 netwrix_04

That is it! ย Aside from the settings above that make connections to the domain controller(s) and setup alerting, the interface itself also shows by default accounts that are currently locked out or that have been locked out. ย You can highlight an account and click theย Examine button to see further details of the lockout and also from the interface you can reset passwords or unlock accounts, which in my experience is fantastic if you are dealing with multiple domains. ย If you have the domains added you can unlock accounts all from one interface.

netwrix_05

Final Thoughts

We are all looking for tools and utilities to make our lives easier as administrators and chasing down password lockouts is the last thing we have time for with other duties as assigned. ย Microsoft’s account lockout tools are a great help to finding locked out accounts and reasons for lockouts, however, the Netwrix Account Lockout Examiner takes all the leg work out of the process as it provides truly proactive account lockout alerting.

 

Brandon LeeDecember 8, 2015Last Updated: January 11, 2021
2 minutes read

Subscribe to VirtualizationHowto via Email ๐Ÿ””

Enter your email address to subscribe to this blog and receive notifications of new posts by email.



Photo of Brandon Lee

Brandon Lee

Brandon Lee is the Senior Writer, Engineer and owner at Virtualizationhowto.com, and a 7-time VMware vExpert, with over two decades of experience in Information Technology. Having worked for numerous Fortune 500 companies as well as in various industries, He has extensive experience in various IT segments and is a strong advocate for open source technologies. Brandon holds many industry certifications, loves the outdoors and spending time with family. Also, he goes through the effort of testing and troubleshooting issues, so you don't have to.

Related Articles

adrepl1

Active Directory Replication Time Intervals

June 12, 2013
After enforcement the EventIDs are now errors instead of warnings

Domain Controller PacRequestorEnforcement Registry Key – Enable Audit and Enforcement

February 7, 2022
RSATfeat

How to Install Remote Server Administration Tools Windows 7

June 4, 2012
AD Replication Status Tool Open Source Alternative

AD Replication Status Tool New Open Source Alternative

June 28, 2023

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.

© Copyright 2024, All Rights Reserved  | VirtualizationHowto.com