June 2017
Beginner to intermediate
742 pages
18h 29m
English
Content preview from Mastering Active Directory
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
Start your free trial
Finding the locked out account
If password policies are defined, accounts with a large number of login failures will be locked out. Locked out accounts in an AD environment can be found using the following:
Search-ADAccount -Lockedout | Select name,samAccountName,Lockedout
The following screenshot show output for the preceding command:
If any of those in list need to be unlocked, we can use the Unlock-ADAccount cmdlet to unlock the account.
For individual account, perform the following:
Unlock-ADAccount tuser4
For all the accounts on the list, perform the following:
Search-ADAccount -Lockedout | Unlock-ADAccount