HT4865 i cant remamber my account security guestions locked out

Similar Messages

• HT1491 I cant remember my account security questions how do I either get them or reset them?

  I cant remember my account security questions how do I either get them or reset them?

  You need to ask Apple to reset your security questions; ways of contacting them include clicking here and picking a method for your country, phoning AppleCare and asking for the Account Security team, and filling out and submitting this form.
  (96999)

• Login failed for user 'MgmtSvc-AdminAPI' because the account is currently locked out.

  We are getting the following error on our SMA web service machine in the mgmtsvc-adminapi log file.   Im guessing I could have also posted this in the WAP forum.     Any ideas on what would cause this?
  Also, we noticed the connection strings in the adminapi site are encrypted as well so not sure what the credentials are that WAP adminapi is using.
  System.Data.SqlClient.SqlException (0x80131904): Login failed for user 'MgmtSvc-AdminAPI' because the account is currently locked out. The system administrator can unlock it.
     at System.Data.SqlClient.SqlInternalConnection.OnError(SqlException exception, Boolean breakConnection, Action`1 wrapCloseInAction)
  Thanks Lance

  Just had this error happen again.   THis is the account that microsoft configured during the WAP portal install.   The connection strings in the web.config for the adminapi site is encrypted so you cant see the credentials.  
  The WAP install didnt create local computer user but does create SQL Auth user with the name of MgmtSvc-AdminAPI
  Log Name:      Microsoft-WindowsAzurePack-MgmtSvc-AdminAPI/Operational
  Source:        Microsoft-WindowsAzurePack-MgmtSvc-AdminAPI
  Date:          12/9/2014 5:07:54 PM
  Event ID:      12
  Task Category: (65522)
  Level:         Error
  Keywords:      None
  User:          IIS APPPOOL\MgmtSvc-AdminAPI
  Computer:      SMAWAPCOMPUTER
  Description:
  Error:
  System.Data.SqlClient.SqlException (0x80131904): Login failed for user 'MgmtSvc-AdminAPI' because the account is currently locked out. The system administrator can unlock it.
     at System.Data.SqlClient.SqlInternalConnection.OnError(SqlException exception, Boolean breakConnection, Action`1 wrapCloseInAction)
     at System.Data.SqlClient.TdsParser.ThrowExceptionAndWarning(TdsParserStateObject stateObj, Boolean callerHasConnectionLock, Boolean asyncClose)
     at System.Data.SqlClient.TdsParser.TryRun(RunBehavior runBehavior, SqlCommand cmdHandler, SqlDataReader dataStream, BulkCopySimpleResultSet bulkCopyHandler, TdsParserStateObject stateObj, Boolean& dataReady)
     at System.Data.SqlClient.TdsParser.Run(RunBehavior runBehavior, SqlCommand cmdHandler, SqlDataReader dataStream, BulkCopySimpleResultSet bulkCopyHandler, TdsParserStateObject stateObj)
     at System.Data.SqlClient.SqlInternalConnectionTds.CompleteLogin(Boolean enlistOK)
     at System.Data.SqlClient.SqlInternalConnectionTds.AttemptOneLogin(ServerInfo serverInfo, String newPassword, SecureString newSecurePassword, Boolean ignoreSniOpenTimeout, TimeoutTimer timeout, Boolean withFailover)
     at System.Data.SqlClient.SqlInternalConnectionTds.LoginNoFailover(ServerInfo serverInfo, String newPassword, SecureString newSecurePassword, Boolean redirectedUserInstance, SqlConnectionString connectionOptions, SqlCredential credential, TimeoutTimer
  timeout)
     at System.Data.SqlClient.SqlInternalConnectionTds.OpenLoginEnlist(TimeoutTimer timeout, SqlConnectionString connectionOptions, SqlCredential credential, String newPassword, SecureString newSecurePassword, Boolean redirectedUserInstance)
     at System.Data.SqlClient.SqlInternalConnectionTds..ctor(DbConnectionPoolIdentity identity, SqlConnectionString connectionOptions, SqlCredential credential, Object providerInfo, String newPassword, SecureString newSecurePassword, Boolean redirectedUserInstance,
  SqlConnectionString userConnectionOptions, SessionData reconnectSessionData)
     at System.Data.SqlClient.SqlConnectionFactory.CreateConnection(DbConnectionOptions options, DbConnectionPoolKey poolKey, Object poolGroupProviderInfo, DbConnectionPool pool, DbConnection owningConnection, DbConnectionOptions userOptions)
     at System.Data.ProviderBase.DbConnectionFactory.CreatePooledConnection(DbConnectionPool pool, DbConnection owningObject, DbConnectionOptions options, DbConnectionPoolKey poolKey, DbConnectionOptions userOptions)
     at System.Data.ProviderBase.DbConnectionPool.CreateObject(DbConnection owningObject, DbConnectionOptions userOptions, DbConnectionInternal oldConnection)
     at System.Data.ProviderBase.DbConnectionPool.UserCreateRequest(DbConnection owningObject, DbConnectionOptions userOptions, DbConnectionInternal oldConnection)
     at System.Data.ProviderBase.DbConnectionPool.TryGetConnection(DbConnection owningObject, UInt32 waitForMultipleObjectsTimeout, Boolean allowCreate, Boolean onlyOneCheckConnection, DbConnectionOptions userOptions, DbConnectionInternal& connection)
     at System.Data.ProviderBase.DbConnectionPool.TryGetConnection(DbConnection owningObject, TaskCompletionSource`1 retry, DbConnectionOptions userOptions, DbConnectionInternal& connection)
     at System.Data.ProviderBase.DbConnectionFactory.TryGetConnection(DbConnection owningConnection, TaskCompletionSource`1 retry, DbConnectionOptions userOptions, DbConnectionInternal oldConnection, DbConnectionInternal& connection)
     at System.Data.ProviderBase.DbConnectionInternal.TryOpenConnectionInternal(DbConnection outerConnection, DbConnectionFactory connectionFactory, TaskCompletionSource`1 retry, DbConnectionOptions userOptions)
     at System.Data.SqlClient.SqlConnection.TryOpenInner(TaskCompletionSource`1 retry)
     at System.Data.SqlClient.SqlConnection.TryOpen(TaskCompletionSource`1 retry)
     at System.Data.SqlClient.SqlConnection.Open()
     at Microsoft.WindowsAzure.Server.Common.SessionManager.<IsMasterAsyncInternal>d__4.MoveNext()
     at Microsoft.WindowsAzure.Management.TaskSequencer.<>c__DisplayClass1e`1.<RunSequenceAsync>b__1d(Task previousTask)
  --- End of stack trace from previous location where exception was thrown ---
     at System.Runtime.CompilerServices.TaskAwaiter.ThrowForNonSuccess(Task task)
     at System.Runtime.CompilerServices.TaskAwaiter.HandleNonSuccessAndDebuggerNotification(Task task)
     at Microsoft.WindowsAzure.Server.AdminManagement.Service.CleanupRunner.MaintenanceCycleRunner.<RunCycleAsync>d__0.MoveNext()
  ClientConnectionId:13052455-e404-404b-abf9-ad4a10f270fd, operationName:, version:, accept language:, subscription Id:, client request Id:, principal Id:, page request Id:, server request id:
  Event Xml:
  <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
    <System>
      <Provider Name="Microsoft-WindowsAzurePack-MgmtSvc-AdminAPI" Guid="{93AB61E1-C729-402F-9569-A23FB5E0B2D6}" />
      <EventID>12</EventID>
      <Version>0</Version>
      <Level>2</Level>
      <Task>65522</Task>
      <Opcode>0</Opcode>
      <Keywords>0x0</Keywords>
      <TimeCreated SystemTime="2014-12-09T23:07:54.084193000Z" />
      <EventRecordID>599</EventRecordID>
      <Correlation />
      <Execution ProcessID="5316" ThreadID="8120" />
      <Channel>Microsoft-WindowsAzurePack-MgmtSvc-AdminAPI/Operational</Channel>
      <Computer>SMAWAPCOMPUTER</Computer>
      <Security UserID="S-1-5-82-1634760204-2030663537-3042087576-1698961595-280283016" />
    </System>
    <EventData>
      <Data Name="message">
  System.Data.SqlClient.SqlException (0x80131904): Login failed for user 'MgmtSvc-AdminAPI' because the account is currently locked out. The system administrator can unlock it.
     at System.Data.SqlClient.SqlInternalConnection.OnError(SqlException exception, Boolean breakConnection, Action`1 wrapCloseInAction)
     at System.Data.SqlClient.TdsParser.ThrowExceptionAndWarning(TdsParserStateObject stateObj, Boolean callerHasConnectionLock, Boolean asyncClose)
     at System.Data.SqlClient.TdsParser.TryRun(RunBehavior runBehavior, SqlCommand cmdHandler, SqlDataReader dataStream, BulkCopySimpleResultSet bulkCopyHandler, TdsParserStateObject stateObj, Boolean&amp; dataReady)
     at System.Data.SqlClient.TdsParser.Run(RunBehavior runBehavior, SqlCommand cmdHandler, SqlDataReader dataStream, BulkCopySimpleResultSet bulkCopyHandler, TdsParserStateObject stateObj)
     at System.Data.SqlClient.SqlInternalConnectionTds.CompleteLogin(Boolean enlistOK)
     at System.Data.SqlClient.SqlInternalConnectionTds.AttemptOneLogin(ServerInfo serverInfo, String newPassword, SecureString newSecurePassword, Boolean ignoreSniOpenTimeout, TimeoutTimer timeout, Boolean withFailover)
     at System.Data.SqlClient.SqlInternalConnectionTds.LoginNoFailover(ServerInfo serverInfo, String newPassword, SecureString newSecurePassword, Boolean redirectedUserInstance, SqlConnectionString connectionOptions, SqlCredential credential, TimeoutTimer
  timeout)
     at System.Data.SqlClient.SqlInternalConnectionTds.OpenLoginEnlist(TimeoutTimer timeout, SqlConnectionString connectionOptions, SqlCredential credential, String newPassword, SecureString newSecurePassword, Boolean redirectedUserInstance)
     at System.Data.SqlClient.SqlInternalConnectionTds..ctor(DbConnectionPoolIdentity identity, SqlConnectionString connectionOptions, SqlCredential credential, Object providerInfo, String newPassword, SecureString newSecurePassword, Boolean redirectedUserInstance,
  SqlConnectionString userConnectionOptions, SessionData reconnectSessionData)
     at System.Data.SqlClient.SqlConnectionFactory.CreateConnection(DbConnectionOptions options, DbConnectionPoolKey poolKey, Object poolGroupProviderInfo, DbConnectionPool pool, DbConnection owningConnection, DbConnectionOptions userOptions)
     at System.Data.ProviderBase.DbConnectionFactory.CreatePooledConnection(DbConnectionPool pool, DbConnection owningObject, DbConnectionOptions options, DbConnectionPoolKey poolKey, DbConnectionOptions userOptions)
     at System.Data.ProviderBase.DbConnectionPool.CreateObject(DbConnection owningObject, DbConnectionOptions userOptions, DbConnectionInternal oldConnection)
     at System.Data.ProviderBase.DbConnectionPool.UserCreateRequest(DbConnection owningObject, DbConnectionOptions userOptions, DbConnectionInternal oldConnection)
     at System.Data.ProviderBase.DbConnectionPool.TryGetConnection(DbConnection owningObject, UInt32 waitForMultipleObjectsTimeout, Boolean allowCreate, Boolean onlyOneCheckConnection, DbConnectionOptions userOptions, DbConnectionInternal&amp; connection)
     at System.Data.ProviderBase.DbConnectionPool.TryGetConnection(DbConnection owningObject, TaskCompletionSource`1 retry, DbConnectionOptions userOptions, DbConnectionInternal&amp; connection)
     at System.Data.ProviderBase.DbConnectionFactory.TryGetConnection(DbConnection owningConnection, TaskCompletionSource`1 retry, DbConnectionOptions userOptions, DbConnectionInternal oldConnection, DbConnectionInternal&amp; connection)
     at System.Data.ProviderBase.DbConnectionInternal.TryOpenConnectionInternal(DbConnection outerConnection, DbConnectionFactory connectionFactory, TaskCompletionSource`1 retry, DbConnectionOptions userOptions)
     at System.Data.SqlClient.SqlConnection.TryOpenInner(TaskCompletionSource`1 retry)
     at System.Data.SqlClient.SqlConnection.TryOpen(TaskCompletionSource`1 retry)
     at System.Data.SqlClient.SqlConnection.Open()
     at Microsoft.WindowsAzure.Server.Common.SessionManager.&lt;IsMasterAsyncInternal&gt;d__4.MoveNext()
     at Microsoft.WindowsAzure.Management.TaskSequencer.&lt;&gt;c__DisplayClass1e`1.&lt;RunSequenceAsync&gt;b__1d(Task previousTask)
  --- End of stack trace from previous location where exception was thrown ---
     at System.Runtime.CompilerServices.TaskAwaiter.ThrowForNonSuccess(Task task)
     at System.Runtime.CompilerServices.TaskAwaiter.HandleNonSuccessAndDebuggerNotification(Task task)
     at Microsoft.WindowsAzure.Server.AdminManagement.Service.CleanupRunner.MaintenanceCycleRunner.&lt;RunCycleAsync&gt;d__0.MoveNext()
  ClientConnectionId:13052455-e404-404b-abf9-ad4a10f270fd</Data>
      <Data Name="requestId">
      </Data>
      <Data Name="subscriptionId">
      </Data>
      <Data Name="clientRequestId">
      </Data>
      <Data Name="principalId">
      </Data>
      <Data Name="version">
      </Data>
      <Data Name="pageRequestId">
      </Data>
      <Data Name="acceptLanguage">
      </Data>
      <Data Name="operationName">
      </Data>
    </EventData>
  </Event>
  Thanks Lance

• My usual iCloud account has been locked out.  I tried the email link - didn't receive an email.   So I created a new Apple ID with another email but now I can't access my other Apple ID Mail, etc..

  My usual Apple ID/iCloud account has been locked out.  I tried the email link - didn't receive an email.   So I created a new Apple ID with another email but now I can't access my other Apple ID Mail, etc..  How do I get the Apple ID I want to use working again?   Help. 

  Hi JkeeneSoldano,
  Thank you for visiting Apple Support Communities.
  To regain access to your Apple ID, try to reset your password using one of these methods:
  Answer your security questions. Use these steps if you know the answers to your security questions.
  Use email authentication. We'll send you an email that you can use to change your password.
  Use two-step verification. If you set up two-step verification, you can use it to change your password. You just need your recovery key and a trusted device.
  From:
  If you forgot your Apple ID password - Apple Support
  If you need to use the email verification method but don't receive the reset email, see this link for more help:
  If you didn't receive your verification or reset email - Apple Support
  Best Regards,
  Jeremy

• Can I disable the alert "the referenced account is currently locked out..."

  I posted the following on the answers site but was recommended to post here
  http://answers.microsoft.com/en-us/windows/forum/windows_7-security/can-i-disable-the-alert-the-referenced-account-is/0af4441c-2f70-4452-a876-7c582fbd6530
  A client has asked me to enable an account lockout threshold on their domain.
  I have made the appropriate changes in Group Policy and also configured an email notification under Task Scheduler that is triggered by Event ID 4740 appearing in the security log. http://community.spiceworks.com/scripts/show/1588-send-email-on-account-lock-out
  It was when testing this that I noted after the nth incorrect password, I received an on screen alert "the referenced account is currently locked out and cannot be logged on to"
  I tested again with an invalid username and did not get the same message. This is potentially a problem because it means that an attacker sees a difference between a valid username and an invalid username without being required to know any correct
  passwords.
  Is there any way that I can disable this on screen alert so that attackers are not presented with a means to validate usernames?
  I am already aware that account lockouts are no longer in favour for other reasons and have informed the client about the possibility of a denial of service attack that deliberately triggers these lockouts and taken certain steps to mitigate the
  effects.
  However, given that an informed decision has been made to stick with the account lockout policy I would like to be able to mitigate this other undesired consequence if at all possible.

  Hi Matt,
  I understand your concern, although I wasn’t able to find a way to disable or change these embedded Windows messages.
  With Account Lockout policy enabled, the risk that accounts being hacked has been reduced a lot. In addition, we can monitor security logs to determine whether hacking behaviors exist or not.
  More information for you:
  Audit Policy Recommendations
  http://technet.microsoft.com/en-us/library/dn487457.aspx
  Configuring Audit Policies
  http://technet.microsoft.com/en-us/library/dd277403.aspx
  Best Regards,
  Amy

• Referenced Account is currently locked out

  Was setting up a new account on my laptop for my wife (luckily I did this. You'll see why in a minute.) and after I finished I took a shower. Came back to the box, typed in my credentials and I got the message "The referenced account is currently locked
  out and may not be logged on to". For the life of me I cannot figure out how this happened. I am able to log onto my wife's new account just fine but from her account I cannot figure out what is causing the issue. The native admin account is disabled
  along with the guest account. And no, I did not change the name of the native admin account, use it, and then disable it. My account is the first account created on the box with admin rights.
  Facts:
  -Any and all attempts to view Group Policies is met with an access is denied message as a standard user (didn't know I had that much security enabled, maybe it's by default?)
  -Any type of account management cannot be done as a standard user.
  -I poured over hundreds of logs but could not find anything out of the ordinary. I cannot access security logs as a standard user.
  -Default account lockout time is 30mins after 5 attempts, I've waited over 3 hours (I know this from memory)
  -I did not enter incorrect password attempts prior to the lockout. The very first attempt was met with the lockout message
  -My account password does not expire and neither does my wife's
  -I am using Win7 Ult-64 on an i7-3630QM 2.4, 8GB ram
  -A fresh install is not an option and neither is an NT password reset. I have encrypted files I cannot lose access to.
  -I am at my wits end.
  Mods, I apologize if this post is in the wrong spot.
  I need some assistance, I've boxed myself in and can't think my way out. Suggestions?
  Thanks in advance!
  Matt M.
  Frustrated User
  Edit: I am able to access the Computer Management window under Admin tools in the CP. Local Users and Groups > Users, I can see all of the users and view their properties. As I mentioned before, Admin and Guest accounts are disabled. The properties on
  my account are:
  User cannot change password: NOT checked
  Password never expires: Checked
  Account is disabled: NOT checked
  Account is locked out: Checked
  Obviously any attempt to change as standard user is denied.

  Hi Kent,
  It's not urgent right now
  I can create new accounts and assign them but what i need to do after creating new account? For example, i will create an account which name is sccmadministrator2;
  Now i have 2 accounts in Primary Site 1
  sccmadministrator: soft. dist. account
  sccmadministrator2: client push installation
  Do i need to same thing in Primary Site 2???
  Is it OK?
  I don't think so, i already 1 account in Primary Site 1 and there is no problem but after activating primary 2 it was getting error "the referenced account is......."
  then i created an account assign it for soft dist. and client push in Primary Site 2...
  Now; Per site 1 network Access account but the same error..........

• Event 4776 Error Code: 0xC0000234 but account not actually locked out

  I am coming across several instances where a user will get the error code 0xC0000234 for event 4776 and Failure Reason: Account Locked Out for event 4625 but the account never actually locks out. I cannot find a corresponding event 644 (windows 2003) or
  4740 (Server 2008 and up) on any of our AD servers.
  Any idea why this would register as an account being locked out, but not actually lock the account out?
  Thanks!

  Hi,
  Sounds a little weird to me.
  Would you please check the account lockout policy, and post out the configured value for
  Account lockout duration,
  Account lockout threshold and Reset account lockout counter after?
  More information for you:
  Account Policy Settings
  http://technet.microsoft.com/en-us/library/cc757692(v=WS.10).aspx
  If the Account lockout duration and Reset account lockout counter after settings are set too low, the account will be unlocked very quickly after it’s locked.
  Best Regards,
  Amy

• The account I'm locked out of is my BlackBerry. Net

  I'm locked out of my BlackBerry.net account. I'm constantly sent to my mailbox which I can't get in to because I can't download on my phone because I don't have password to install

  This is the best fix for your device!
  Click if you want to Thank someone. If Problem is resolved, so that others can make use of it.

• TS1424 itunes is saying i cant connect to itunes because im locked out with my passcode but my display screen is broken and i cant see anything but my phone works, what should i do? i want to back up my phone before i upload my new one! help me please

  im locked out of itunes because i need to put my passcode in but my display screen is broken. i dont know how to fix it because im tying to back up my old iphone but i cant without putting in my passcode.

  If you have synced the device on a computer in the past, you can back it up without the passcode. If you have not synced/backed up the device before, then you are out of luck. No way to back it up or sync it without the passcode.

• How do get my password for my original Apple ID reset, when it keeps sending instructions to the emaill account I'm locked out of?

  My Iphone start bugging me for my apple id password recently, and i would put inm and move on; then sduddenly it siad I had the wrong password.
  I checked my passord book and entered it again, but it's saying it incorrect. Then when it try to reset it sends info to  my @ me mail account (my apple id), but i can't access that account without the password--AARGGHHH.

  If you know the answers to your security questions, you can reset the password without sending an email as explained in the first section of this article: http://support.apple.com/kb/HT5787.  If you dont' know the answer to your security questions, you'll have to contact Apple for assistance by going to https://expresslane.apple.com, then click More Products and Services>Apple ID>Other Apple ID Topics>Lost or forgotten Apple ID password.  You'll need your serial number, which you can find in Settings>General>About.

• TS3899 Two iPhones and iPad on same email address and account one was locked out from receiving email. Any ideas?

  Can anyone help ?

  Check the trash folder also. Spam could get deleted immediately, depending on how you configured your Comcast account.
  Is it possible that you or a family member have another Apple ID?

• How do i get back in my iTunes account after being locked out

  i locked myself out. how do 'i get back in?

  I had to call them when this happened to me. You can also reset your password from the Apple website. This might help
  http://www.apple.com/support/appleid/

• Lenovo has different F8 screen, can't get to safe mode with command prompt - account locked out

  Thinkpad W500, Win7Pro.  Can't login: "the referenced account is currently locked out and may not be logged on to". I need to boot to safe mode with command prompt to enable the Administrator account (disabled by default) with a "net user administrator /active:yes" command, but Lenova has their own recovery and interfaces which are preventing me from accessing with normal windows techniques. I either need to be able to get a command prompt on the true C: drive, or reset this lockout situation, and fast...  Waiting more than 180 minutes did not work, and using system restore is not an option-key software patches and additions make this very unattractive, and I know how to do that. 
  Optional Information:
  Computer OS: Windows 7
  Browser: IE
  Already Tried:
  -ThinkVantage button (reg and advanced views) -a boot disk for pwd reset program (I know password, but I am locked out - didn't help) -F8, Repair options and all safe modes -NOT system restore, as we are trying to not undo months of software revisions - we just need to login!

  If we take the error messages seriously, then probably the first thing that you would have to do would be to replace the malformed library:
  /System/Library/Frameworks/Security.framework/Versions/A/Security
  If you have another computer with the same operating system, you could connect via target disk mode and copy over the good library to replace the bad one. I don't know if this library is different between 10.2.6 and 10.2.8. If the library were fixed, that might solve your other problems and it might not. There is no way for us to know.
  Alternatively, you could do an archive and install.

• Exchange User Account Managment Task locking AD account

  User's AD account is locking within minutes. Windows logs show calling computer as the Exchange 2010 CAS server ( which is part of the CAS array).  We have disabled all mailbox features ( Active Sync, Mapi, OWA, POP, IMAP)  The
  account still locks up within minutes and with same Windows event. There are no 1035 events on the CAS showing any brute force attacks and no other Logs referencing this event at all . The ISS logs show an old Samsung Phone that the user
  had months ago and it broke. It doesn't make sense that it will  be blocking the account even when Active Sync is disabled for testing. I have gone ahead and blocked it anyway and removed it from the mailbox using MAPI MFC. I did check server
  for Conflicker but did not see any thing odd in the registry. What can be causing this lockout ? Also the user does not have any tasks configured or passwords saved on the computer.
  Windows Log:
  og Name:      Security
  Source:        Microsoft-Windows-Security-Auditing
  Date:          9/17/2014 9:09:03 AM
  Event ID:      4740
  Task Category: User Account Management
  Level:         Information
  Keywords:      Audit Success
  User:          N/A
  Computer:      DOmainController.DOmain.local
  Description:
  A user account was locked out.
  Subject:
   Security ID:  SYSTEM
   Account Name:  DOMAINCONTROLLER$
   Account Domain:  Domain Name
   Logon ID:  0x3e7
  Account That Was Locked Out:
   Security ID:  Domain Name\User
   Account Name:  windows user name
  Additional Information:
   Caller Computer Name: Exchange 2010 CAS server
  Event Xml:
  <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
    <System>
      <Provider Name="Microsoft-Windows-Security-Auditing" Guid="{54878625-5237-4999-A5DA-4t567j328C30G}" />
      <EventID>4740</EventID>
      <Version>0</Version>
      <Level>0</Level>
      <Task>13824</Task>
      <Opcode>0</Opcode>
      <Keywords>0x8020000000000000</Keywords>
      <TimeCreated SystemTime="2014-09-17T13:09:03.021253500Z" />
      <EventRecordID>331284493</EventRecordID>
      <Correlation />
      <Execution ProcessID="492" ThreadID="1036" />
      <Channel>Security</Channel>
      <Computer>DomainController.domain.local</Computer>
      <Security />
    </System>
    <EventData>
      <Data Name="TargetUserName">Username</Data>
      <Data Name="TargetDomainName">Exchange 2010 CAS Server</Data>
      <Data Name="TargetSid">S-1-5-21-4059915145-90934678-67520089-8930</Data>
      <Data Name="SubjectUserSid">S-1-5-18</Data>
      <Data Name="SubjectUserName">DomainControler$</Data>
      <Data Name="SubjectDomainName">DOmain Name</Data>
      <Data Name="SubjectLogonId">0x3e7</Data>
    </EventData>
  </Event>
  IIS Log Entry for the Old Phone which was removed now using MAPI MFC and Blocked. Note 10.88.11.2 is Load Balancers IP (changed in this post)
  ault.eas Cmd=Sync&User=DomainName%5CDomainUserName&DeviceId=SEC1772877030523&DeviceType=SAMSUNGSCHI535 80 Domain\Username 10.88.11.2 SAMSUNG-SCH-I535/101.403 401 1 1909 0

  Hello,
  Ad replication has been tested with no issues.
  The Test account locks up only if we intentionally enter the bad password. This was done to see that if our disabling of the Mailbox feature on the actuall production account would prevent locks due to request coming to exchange for that feature,
  with a bad password. Apparently account will lock even if the mailbox feature is disabled. For example: if OWA if disabled for a mailbox entering the incorrect password for the account will lock the account.
  So, currently we have done a work around; since the user has no pc to log in to - only uses Ipad and Iphone - we have changed the user name in AD. The account is not locking in but I am still seeing these eneteries in the IIS logs coming from his old phone
  for the old username ( which broke and was trashed- this also tells us that if we revert to the actual username for the account it will lock). Also, disabling active sync for the user when user name was not changed did not have
  any impact and request coming to active sync would still lock the account.
  What should we do to prevent exchange from trying to respond to this request to active sync, from an old device ?   - the device was blocked on the account and removed through MFC when the issue surfaced but it did not fix the situation:
  Request on IIS logs:
  2014-09-18 00:01:07 10.97.10.20 POST /Microsoft-Server-ActiveSync/default.eas Cmd=Sync&User=Domain Name%5CUsername&DeviceId=SEC1342789030523&DeviceType=SAMSUNGSCHI535 80 DOmain Name\Username 10.1.10.46 SAMSUNG-SCH-I535/101.403 401 1 1909 0
  Block Command Used:
  [PS] C:\Windows\system32>Set-CASMailbox -Identity: "[email protected]" -ActiveSyncBlockedDeviceIDs: "SEC1342789030523"
  Confirmed its listed as blocked:Get-CASMailbox Username | Select ActiveSyncAllowedDeviceIDs, ActiveSyncBlockedDeviceIDs
  Note: ( Allowed devices are non since at that time we had removed all current active sync devices attached to the account to see if any of them were responsible for the bad request )
  ActiveSyncAllowedDeviceIDs                                  ActiveSyncBlockedDeviceIDs
   {SEC1342789030523}

• AD account getting locked out after password change in Jabber

  When user changes his network credentials and does not update them in Jabber. Jabber will still try to connect to phone services and voicemail with the old credentials which is leading to their account getting locked in AD after three attempts.
  We are using Jabber 9.6.1, so a fairly new version.
  Can some suggest if there is a workaround?

  Hi,
  We are seeing a similar issue after the user has changed their AD password the account repeatedly gets locked out when they try to log into Jabber. 
  We are also using Cisco IM&P and our CUCM is LDAP synced
  I am interested to know why you are asking if LDAP authentication is configured?
  Regards,
  Andries