General discussion
-
Topic
-
Password Lockout
LockedW2k SP2 AD domain.
Account lockout policy is for 6 invalid attemps then account is locked for 9999days. Counter 2minsLogon onto w2k pro machine, then lock workstation and enter an invalid password more than 6 times, message says “account disabled” (so far so good). However if you then enter the corerct password, it will unlock the workstation and get into the desktop. After about 30secs, it would appear that the session has ended due to the account being locked out. However, my concern isthat anyone could “guess” a password on a workstation and gain unauthorized access to the machine for about 30secs. (enough time to cause some damage)
I reliase SP3 will fix the invalid message from “account disabled” to “account locked out” but nothing on technet refers to this specific problemHas anyone come across this or know how to cure the problem.
Any ideas would be appreciated.
Thanks