Want to set password lockout policy as only admin can unlock the domain account once its get locked after 3 attempts.

Aniket temgire 1 Reputation point
2021-09-16T04:54:36.6+00:00

My organization required below settings in domain account lockout policy.

1) Account should get lockout after 3 attempts
2) Domain account should unlocked by Administrator only.

Aniket T

Windows
Windows
A family of Microsoft operating systems that run across personal computers, tablets, laptops, phones, internet of things devices, self-contained mixed reality headsets, large collaboration screens, and other devices.
5,046 questions
0 comments No comments
{count} votes

2 answers

Sort by: Most helpful
  1. Limitless Technology 39,506 Reputation points
    2021-09-16T13:11:10.61+00:00

    Hi there,

    You must have Administrators rights on the local device, or you must have the appropriate permissions to update a Group Policy Object (GPO) on the domain controller to perform these procedures. You can follow the steps in the link to Configure security policy settings

    https://learn.microsoft.com/en-us/windows/security/threat-protection/security-policy-settings/how-to-configure-security-policy-settings

    Hope this answers all your queries, if not please do repost back.
    If an Answer is helpful, please click "Accept Answer" and upvote it : )

    1 person found this answer helpful.
    0 comments No comments

  2. Aniket temgire 1 Reputation point
    2021-09-18T03:44:57.517+00:00

    Dear,

    That's all i configured earlier. Required direct inputs for below points.
    We cannot define below settings as administrator unlock locked account only.
    133110-capture.png

    0 comments No comments