We recently updated our
Terms and Conditions for TechRepublic Premium.
By clicking continue, you agree to these updated terms.
Invalid email/username and password combination supplied.
An email has been sent to you with instructions on how to reset your password.
Welcome to TechRepublic!
Username must be unique. Password must be a minimum of 6 characters and have any 3 of the 4 items: a number (0 through 9), a special character (such as !, $, #, %), an uppercase character (A through Z) or a lowercase (a through z) character (no spaces).
The Administrator can re-inable the account, change the password and access the data. This will work even if the data is encrypted. Another solution is for the Administrator to take ownership of the data file. See KB 268019.
Under Administrative Tools there is a local security settings tab. Under that there are Audit tabs such as Audit failed logins. If failed log ins by unauthorized users are locking the accounts you refer to then the info would show up in the audit log.
There is no direct attribute for the date an account was disabled. The closest LDAP attribute might be whenChanged since in theory the last change to the account should have been disabling it. You would have to write an LDAP query to get this attribue and test to make sure that no normal routines would update that field after the account is disabled. Good Luck!