+ Post New Thread
Results 1 to 4 of 4
Windows Server 2000/2003 Thread, Accounts locked out after DC reboot in Technical; Hello everybody, i got a problem which is drivin me crazy... hope somebody can help, The domain is w2003 native, ...
  1. #1

    Join Date
    Feb 2009
    Location
    Savona
    Posts
    1
    Thank Post
    0
    Thanked 0 Times in 0 Posts
    Rep Power
    0

    Accounts locked out after DC reboot

    Hello everybody,
    i got a problem which is drivin me crazy... hope somebody can help,
    The domain is w2003 native, with 2 DCs on one single site, and about 150 users.
    50 of them are connected locally, the rest is using vpn or authenticating only against the mail server.

    There'a a GPO applied (i believe correctly) at domain level which sets password lenght and maximum age (60 days) for all the domain users.

    The problem is when i reboot a DC many users cannot login anymore, and i have to reset the passwords to give them access again.
    Odd thing is that doesn't happen any time i reboot the server (but it already happened twice), and that only part of the users are affcted (say 50 out of 150).
    I couldnt find anything useful in the logs, and i cant see any common characteristics between the locked out users...

    any idea?

    Thanks very much
    Marco

  2. #2


    Join Date
    Feb 2007
    Location
    Northamptonshire
    Posts
    4,689
    Thank Post
    352
    Thanked 794 Times in 714 Posts
    Rep Power
    346
    I suppose I'd ask whether the DC stayed up longer than 60 days between incidents?

  3. #3

    Michael's Avatar
    Join Date
    Dec 2005
    Location
    Birmingham
    Posts
    9,262
    Thank Post
    242
    Thanked 1,568 Times in 1,250 Posts
    Rep Power
    340
    You have two domain controllers - are they both hosting AD with DNS integrated and DHCP? If they are, another thing I would check is whether File Replication is working (AD Sites and Services). You could also try manually stopping and starting the File Replication Service on each DC.

    I suspect the users affected are the users who are logging on when you're rebooting a domain controller. I presume the users affected are always different?

  4. #4

    FN-GM's Avatar
    Join Date
    Jun 2007
    Location
    UK
    Posts
    15,846
    Thank Post
    877
    Thanked 1,680 Times in 1,460 Posts
    Blog Entries
    12
    Rep Power
    444
    I would check replication is playing.

    Does anything show up in the event log?

SHARE:
+ Post New Thread

Similar Threads

  1. Reboot Finction not working
    By FN-GM in forum EduGeek Shutdownertron
    Replies: 13
    Last Post: 1st October 2008, 09:43 PM
  2. Replies: 13
    Last Post: 17th September 2008, 02:40 PM
  3. server reboot
    By chrbb in forum Windows
    Replies: 25
    Last Post: 14th September 2007, 09:11 AM
  4. Replies: 3
    Last Post: 1st August 2007, 10:00 PM
  5. HP switch reboot, Help!
    By phil_thebeans in forum Wireless Networks
    Replies: 1
    Last Post: 6th March 2007, 08:51 AM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •