Windows 7 Forums


Windows 7: Account Lockout Duration for Locked Out User Accounts


Account Lockout Duration for Locked Out User Accounts

How to Set Account Lockout Duration for Locked Out User Accounts
Published 19 Mar 2010
Published by

Featured Tutorial

Bootmgr - Move to C:\ with EasyBCD
Bootmgr - Move to C:\ with EasyBCD

How to Move Bootmgr to C:\ with EasyBCD

Peppermint3 - Create Live CD/DVD/USB To Use For Emergency Backup
Peppermint3 - Create Live CD/DVD/USB To Use For Emergency Backup

How to Perform an Emergency Data Backup When Windows 7 Will Not Boot

Dual Boot - Windows 7 and Linux
Dual Boot - Windows 7 and Linux

How to Correctly Setup a Dual Boot with Windows 7 and LinuxMint13

User Profile - Customize During Installation
User Profile - Customize During Installation

How to Customize Default User Profile in Audit Mode

Online Scanners - Scan Suspicious Files on your PC
Online Scanners - Scan Suspicious Files on your PC

How to Scan Suspicious Files using Online Scanners
How to Set Account Lockout Duration for Locked Out User Accounts

information   Information
The account lockout duration security setting determines the number of minutes a locked out account remains locked out, after reaching the account lockout threshold of invalid logon attempts with a incorrect user name and/or password, before automatically becoming unlocked.

When you first setup an account lockout threshold, the default account lockout duration is set to 30 minutes. This will show you how to set how many minutes you want for the account lockout duration.
warning   Warning
You will only be able to do this while logged in as an administrator.

EXAMPLE: Locked Out User Account
NOTE: This is the locked out message a user will get if they reach the account lockout threshold number of invalid logon attempts.
Account Lockout Duration for Locked Out User Accounts-logon_screen.jpg



OPTION ONE
Through Local Security Policy
1. If you have not already, you will need to set a account lockout threshold first for the number of invalid or failed logon attempts that causes a user account to be locked out.

2. Open the Local Security Policy editor.

3. In the left pane, expand Account Policies, and click on Acount Lockout Policy. (see screenshot below)
Account Lockout Duration for Locked Out User Accounts-duration1.jpg
4. In the right pane, double click on Account lockout duration. (see screenshot above)

5. Type in a number between 0 and 99999 for how many minutes you want the user acount to be locked out for until automatically unlocked, then click on OK. (see screenshot below)
NOTE: The account lockout duration must be greater than or equal to the reset account lockout counter after time.
WARNING: If you set the account lockout duration to 0, then a locked out user account will be locked out until an administrator manually unlocks that locked out user account.
Account Lockout Duration for Locked Out User Accounts-duration2.jpg
6. Click on OK. (see screenshot below)
NOTE: You will not see this unless the account lockout duration is not greater than or equal to the reset account lockout counter after time.
Account Lockout Duration for Locked Out User Accounts-duration3.jpg
7. When done, close the Local Security Policy editor. (see screenshot below)
Account Lockout Duration for Locked Out User Accounts-duration4.jpg



OPTION TWO
Through Elevated Command Prompt
1. If you have not already, you will need to set a account lockout threshold first for the number of invalid or failed logon attempts that causes a user account to be locked out.

2. Open a elevated command prompt.

3. To See the Current "Account Lockout Duration" Setting
A) In the elevated command prompt, type net accounts and press enter. (see screenshot below)
NOTE: The account lockout duration must be greater than or equal to the reset account lockout counter after time.
Account Lockout Duration for Locked Out User Accounts-cmd_duration1.jpg
4. In the command prompt, type the command below and press Enter.
NOTE: Substitute (0-99999) for a number between 0 and 99999 for how many minutes you want the user acount to be locked out for until automatically unlocked. If you set the account lockout duration to 0, then a locked out user account will be locked out until an administrator manually unlocks that locked out user account.
Code:
net accounts /lockoutduration:(0-99999)
For example, for 45 minutes until a locked out user account is unlocked automatically, I would type in this command below and press enter.

Code:
net accounts /lockoutduration:45
Account Lockout Duration for Locked Out User Accounts-cmd_duration2.jpg
5. Close the elevated command prompt.
That's it,
Shawn






Related Tutorials

Need more help? Try searching our extensive help and support site.
Loading
Comment

 Account Lockout Duration for Locked Out User Accounts problems?



Tutorial Tools



Similar help and support threads for: Account Lockout Duration for Locked Out User Accounts
Windows 7 Tutorial Category
Solved Creating new user account adds TWO accounts General Discussion
User accounts issue. Can't create 2nd account. General Discussion
Renaming a locked User Account folder General Discussion
Account Lockout - Unlock a Locked Out User Account Tutorials
Help I changed user accounts now locked out General Discussion


All times are GMT -5. The time now is 04:03 PM.



Windows 7 Forums is an independent web site and has not been authorized,
sponsored, or otherwise approved by Microsoft Corporation.
"Windows 7" and related materials are trademarks of Microsoft Corp.
© Designer Media Ltd