Question

Q: Windows 10 Domain joined locking out user account regularly This thread is locked from future replies

Scenario:

Windows 10 x64 PC joined to Windows 2012 Functional Level Domain - Windows Server 2012 R2 DC's

After a period of activity when a user returns to there PC and unlocks it, a short time later (a few minutes) the user is prompted with "Windows needs your current credentials".  After locking the PC, occasionally the PC will indicate that it is locked out.  Further if the prompt for Windows needs your current credentials is ignored the account will often lock out a short time later.

Further, sometimes the prompt for "Windows needs your current credentials" is not received and the account locks out.  Using AD Users and Computer and looking at the object modified time, it is possible to track to the DC which locked out the account and the reason why - Kerberos Pre-Authentication failed - see attached screenshots.

The PC's are domain joined, one having been part of the Windows Insider program for some time, and another an in-place upgrade from Windows 8.1 Enterprise.  Both PC's are ruining Windows 10 Enterprise - currently not activated.

Issue has been seen for a few builds, possibly from around build 10162, as described in the similar issue here: http://www.tenforums.com/network-sharing/7973-domain-account-locked-daily.html 



* Please try a lower page number.

* Please enter only numbers.

* Please try a lower page number.

* Please enter only numbers.

Same scenario happening to me. Seems to have been introduced with build xxxx62 a month ago.  Can reproduce on all Win10 machines on my domain, clean installs and upgrades.

Did this solve your problem?

Sorry this didn't help.

12 people were helped by this reply


Here also the same experience, windows 10 enterprise v10240 multiple test users has the same problem.

I was wondering if you guys also have the same environment

- Lync 2013

- Microsoft account attached for office/onedrive purposes

I suspect it also could have interference with Lync .. but this is just a hunch

Did this solve your problem?

Sorry this didn't help.


I've the same problem - Windows 10 Pro x64.

After update my Desktop-PC with Windows 8.1 every 30 minutes my domain account was locked out.

A little bit better after clean install, so it is twice a day.

No Errors in the Eventlog, nothing. Only the warning that my account is locked out.

Sometimes i receive the message "Windows needs your current credentials", but not every time when the account is locked out.

Domain Function Level: Windows Server 2008 R2 (2x W2k8R2 & 2x W2K12R2)

Microsoft Account is only for OneDrive and i tried to configure for the AppStore, but this isn't working.

Did this solve your problem?

Sorry this didn't help.


Yep me too.

Fresh install of Win 8.1 pro, upgraded to 10 Pro, joined to domain and installed office 2016 preview (from 365 account).

Now getting locked out of Windows on a regular basis. Have to keep using local admin account to get access to things...

Did this solve your problem?

Sorry this didn't help.


Same problem here. Mixed environment with hosted Exchange + O365 and Google Apps.

Been happening since 10162. I am currently running a fresh install (no upgrade) of Win 10 Pro.

Did this solve your problem?

Sorry this didn't help.


We are also having this problem. We have 3 machines running Windows 10 Pro and all of them get this issue.

Surely Microsoft must be aware of this issue...

Did this solve your problem?

Sorry this didn't help.


Hello - Same problem here with my domain joined Windows 10 Enterprise RTM machine running Office 2013 32 bits + Skype for Business 2015 + OneDrive. AD account would go locked out very frequently, tried a lot of stuff like deleting all entries in Credential Manager, changing domain password, rejoining domain, renaming computer, ... Usually I get the warning "Windows needs your credentials", sometimes not, sometimes I get a login prompt, I presume from Outlook or Skype... Veerry annoying... 

Did this solve your problem?

Sorry this didn't help.


I suspect it also could have interference with Lync .. but this is just a hunch

I have the issue, and I don't use Lync.

I do have Microsoft account attached for office.

Did this solve your problem?

Sorry this didn't help.


I also have the same problem. Office 2013, Skype for Business and OneDrive. I'm trying to narrow down what it may be and those are the few that I haven't been able to completely rule out yet. For me it only happens when I lock my workstation. If I say logged on it never locks.

Did this solve your problem?

Sorry this didn't help.


I ticked this option for the user account and it hasn't locked out since.

I haven't noticed any negative effects, but as it's not the default I don't consider it a solution.

On the machine that caused the locked there were audit events when I used a different user/password to logon to a server in a remote desktop session. not an error, just that I was using and explicit password, (rather than implicitly the logged on user one). same time as the account lockout on the DC.

Did this solve your problem?

Sorry this didn't help.

189 people were helped by this reply


* Please try a lower page number.

* Please enter only numbers.

* Please try a lower page number.

* Please enter only numbers.

 
Question Info

Views: 61,269 Last updated: April 19, 2018 Applies to: