This is my first post so excuse my ignorance on the standards for what to include in a post.
We are running windows server 2008 R2 on DCs located in India and here in the US. Our main DC is the one in India. We have a policy set on our domain for locking out accounts after 3 invalid password entries. Accounts get locked out as usual, I go in and unlock them, no problems. Well recently I am noticing that when people call and there account is locked out, the status in account settings within AD is showing that it is "Unlocked" (Mind you I am connected to the US office DC. But when I go to the India DC to check it out, it shows that the account is "Locked". Now this is only happening to certain accounts and not others, but all the accounts are located in the same OU.
If you need more info please feel free to ask, im new to the forum troubleshooting questions.
Troubleshooting I have already performed:
-Created a test account
-I logged into both servers remotely and opened AD on each
-I then had a reference computer connected to the domain and I typed the password wrong 4 times for the test account
-Error message when attempting to log in "The reference account is currently locked out....."
-I then go to the US office server and notice it says "Locked" (As it should)
-I go to the India office server and it says "Locked" (As it should)
-I unlock the account and all is well
-works seamless.
But for some reason with these 2 accounts it does not work that way. They read as locked on one server and unlocked on the other.