windows 98 lockouts

[Alex]

I have windows 2000 domain with windows XP and windows 98
machines login in to it. A few of the 98 machines, after
user logs in, some times get locked out. I looked at the
event log on the server and it reports that user is
supplying bad credentials. After the user is logged in,
why does the windows 98 machine is still trying to pass
credentials? Only a couple of machines doing it.
Started happening a few months ago (probably after one of
the patches was applied).
Any help would be appreciated.

 

[Marina Roos]

Is WINS installed on the server? W98 still needs that. Also options 044 and
046 (0x8) in DHCP-server, scope options.
How many nics in the server?

 

[Steven L Umbach]

You might try installing the Directory Services Client on those machines to
see if it helps, possibly trying one machine first which will allow W98 to
use NTLMv2 which may help depending on Domain Controller Security Policy. I
understand that there is also an updated version available from MS. You may
also want to raise your lockout threshold to at least ten which still should
be plenty adequate to prevent brute force type attacks unless you allow very
weak passwords. Supposedly in certain situations one bad logon attempt will
generate numerous failed logon attempts in the security log. Also read
through KB 823659 which lists problems that may arise with configuration of
certain security options [anonymous restrictions, smb signing, and lan
manager authentication level in particular] and user rights assignments that
may cause logon, password change problems, etc. --- Steve

http://support.microsoft.com/default.aspx?scid=kb;EN-US;323466
http://support.microsoft.com/default.aspx?scid=kb;en-us;283261
http://support.microsoft.com/default.aspx?scid=kb;en-us;823659