Hi all!
A few weeks ago after i changed my AD password i got an
issue that my account is permanently locking by GPO after a few
unsuccessfull tries to authorize. Today i found that the reason of
such locks is a machine which hosts SD portal.
The first point of investigation were scheduled tasks and services.
The target machine located in another domain than my account and my
regular account even has no priveleges to log in to this machine. Next
i did the onny possible concusion - SD is a reason of this locks.
Looking through SD settings i found that Initiators import were
configured to use my acc, but this tasks is a manual activiry and
should not performs all day. Domains searching was set to use another account.
Next step i did - i tried to find all places in SD database where
my account named and look it through. I found not so much and
interesting info. Now i have no idea how SD portal may use my account.
Maybe some of you have some idea to check smth? The reason
definitevely is that SD contains my login and OLD password. Where it
could contain it?