Does anyone know of a way to list locked out domain accounts without going through each individual one? All accounts can be listed at a command prompt by “net user /domain”, but how can only locked out accounts be listed or otherwise determined? Is there a way perhaps in Active Directory?