Domain Locked Account

A_Lop 41 Reputation points
2021-02-25T19:37:59.507+00:00

Hello, I need assistance on unlocking this user's account. The user's devices (e.g. mobile and laptop) password has been changed. I had also shutdown the user's devices, but the account gets locked out right away. M365 office apps are all working fine. Credentials on the laptop has been cleared and mobile Outlook app has been deleted and signed on with the new password. In the on-prem DC Security event viewer shows the ID 4740, but in the additional information, the Caller computer name is weird, it doesn't show the local computer name where the user is supposed to be locked out, but it's showing ADFS server instead. We have a hybrid environment, On-prem DC & ADFS. Any information is greatly appreciated, thanks.

Active Directory Federation Services
Active Directory Federation Services
An Active Directory technology that provides single-sign-on functionality by securely sharing digital identity and entitlement rights across security and enterprise boundaries.
1,220 questions
{count} votes

1 answer

Sort by: Most helpful
  1. Pierre Audonnet - MSFT 10,171 Reputation points Microsoft Employee
    2021-02-26T14:23:52.477+00:00

    Throubleshooting steps are documented here: https://learn.microsoft.com/en-us/troubleshoot/azure/active-directory/account-lockout-adfs-window-server

    Give it a try and tell us if you need more details!

    Note that the Script Center moved away, so the first Repro script mentionned can be access here.

    0 comments No comments