Terminal Services Logons

[Guest]

First of all thanks for the help on this issue. I need to find out a way of
knowing all locations that a certain account is logged into via terminal
services in a very large environment (1000+Servers)

After a password change, this account is getting locked out every 15 minutes
because of active terminal services sessions that are using the old password
and causing the lockout.

 

[Guest]

Why not just reboot the servers.

You should be able to filter the sceurity logs on one of your DCs to harvest
the information you need.

Patrick Rouse
Microsoft MVP - Terminal Server
http://www.workthin.com

 

[Guest]

Why would I reboot any servers?

The log files roll (90,000 user AD domain) so fast that it is almost
impossible to find any usefull informaiton. Are you saying that their is no
good way of finding out which terminal services sessions are still active and
locking my account up?

Ho can Terminal Services Manager or some other tool do this?

 

[Guest]

Rebooting the servers would kill every session that is using invalid cached
credentials.

If you were using a product with a central management console(like Citrix
MetaFrame), it'd be easier to to what you want because you can look at which
users are using which published applications, on which server...

You should be able to filter the security logs on your DCs to show account
lockouts or authentication failures, however you probably would want to
export the file and view it in a static state.

Do you have 1000 servers total, or 1000 terminal servers?