Account Lockout threshold

Question

In mixed mode authentication for SQL 2008 R2, How do you check the setting for Account Lockout threshold using Select statement. Example

Select Account Lockout threshold from sys.???

Thanks.

Answer 1

I think, it uses the Windows Password Policy

---

SKG: Please Marked as Answered, if it resolves your issue. (b: http://sudeeptaganguly.wordpress.com)

Answer 2

Hi As618,

I dont think we can use t-sql to set because it uses the windows local password policies ,because in SQL Server 2008 uses the password policy enforcement settings from the domain or local machine.

The account lockout(i,e the Number of incorrect login attems will get locks out) is based on the Windows password security Polcicies that set.

Start ->run ->Gpedit.msc->windows settings ->security settings->check for the Account Lockout Threshold

Link ->http://msdn.microsoft.com/en-us/library/ms813426.aspx

---

Rama Udaya.K ramaudaya.blogspot.com ---------------------------------------- Please remember to mark the replies as answers if they help and unmark them if they provide no help.

Answer 3

This could be the solution, please check it out.

http://www.windowsnetworking.com/kbase/WindowsTips/WindowsXP/AdminTips/Security/AccountLockoutPolicies.html

Answer 4

There is no direct way to do this, because account lockout is depand on the password policy of AD.

you can use select name,modify_date from sys.server_principals & set the alert as per the AD password policy.
However ,there is no guarantee that only password has been changed , could be  name  & other things as well