Hello Team,
We have user account which is getting locked frequently, this account is being used to login to internal web site and also for schedule scripts. we checked with user and as per them password is not changed since last few years, in account lockout event logs we found that the caller machine is domain controller itself where account lock events generating (this is DC found as ORG Lock in LockOutStatus tool), and this DC is also being used as LDAP server in there WEB application where they are not able to login when account is locked.
Now we are not able to understand how to troubleshoot further since the caller machine is domain controller itself, also the schedule scripts which they are using are running fine.
MCP, MCTS