August 2019
Intermediate to advanced
786 pages
20h 22m
English
If password policies are defined, accounts with a large number of login failures will be locked out. Locked-out accounts in an AD environment can be found using the following command:
Search-ADAccount -Lockedout | Select name,samAccountName,Lockedout
If any of those in the list need to be unlocked, we can use the Unlock-ADAccount cmdlet to unlock an account.
For an individual account, perform the following command:
Unlock-ADAccount tuser4
For all the accounts on the list, perform the following command:
Search-ADAccount -Lockedout | Unlock-ADAccount
Read now
Unlock full access