Hi all, first post.
We have a domain admin who periodically gets his AD account locked through no action of his own. The security logs indicate that his account is being locked by his old computer (W10x64), which was cleaned up and redeployed to a different user.
His user profile was removed prior to redeployment and we think anything related to his domain admin account was removed. We ran disk cleanup/CCleaner on the machine and deleted some obsolete program files. But his account continues to become locked out.
Interestingly, there are no failed logon events (ID 4625) generated in the logs, only the lockout event (ID 4740).
Any idea why this is happening?