User authentication is one of the key principals of Active Directory as a directory system. It is safe to say that when user authentication does not exist in an Active Directory environment, then there is no need to have an Active Directory in our organization.
As you all know the #wannacry malware hit the whole world in the last few days. The vulnerability behind this malware was leaked out by ShadowBrokers. Since the spreading rate of this vulnerability is greatly increasing, it is considered an obligation to prevent from this.
Many countries advance their clock for 1 hour at very first day of the spring. Considering this concept, people simply get up in the morning at first day of the spring and set their clock. For Iran, every year, clocks will be advanced by 1 hour in 29th of Esfand ( The last day of winter), but Microsoft is not aware of when the 29th of Esfand is.
In any size of network which is based on Active Directory you have experienced the account lock out problem. You simply ask yourself why it is locked? I am more than a hundred percent sure that I am entering my password in a correct form but why it becomes locked again and again? The answer might be a bit general: “It depends on many reasons”. Although entering the password in the wrong form turns out to be the first reason of account locked out problems, there are plenty of reasons behind this incidence. I am going to cover how you can find out the source of problem with a simple GPO and then your enterprise will be problem free.