| title | description | ms.date | manager | audience | ms.topic | localization_priority | ms.reviewer | ms.custom |
|---|---|---|---|---|---|---|---|---|
Enumerate locked out user accounts using Saved Queries |
provides some step-by-step instructions to enumerate locked out user accounts using Saved Queries |
12/26/2023 |
dcscontentpm |
itpro |
troubleshooting |
medium |
kaushika |
sap:Windows Security Technologies\Account lockouts, csstroubleshoot |
This article provides some step-by-step instructions to enumerate locked out user accounts using Saved Queries.
Applies to: Windows Server 2012 R2
Original KB number: 555131
This article was written by Simon Geary, Microsoft MVP.
Follow these step-by-step instructions to list all currently locked out accounts in a domain:
-
Sign in to a Domain Controller with administrative privileges in the domain, and open Active Directory Users & Computers.
-
Right-click Saved Queries and select New > Query.
-
Give the query a name and optionally a description. Select Define Query.
-
Select Custom Search from the drop-down dialogue box.
-
Select Advanced and enter this LDAP filter in the query box:
(&(objectCategory=Person)(objectClass=User)(lockoutTime>=1))
-
Select OK twice and the new query appears under the Saved Queries folder in Active Directory Users & Computers.
[!INCLUDE Community Solutions Content Disclaimer]