Skip to content

TechDirectArchive

Hands-on IT, Cloud, Security, Veeam & DevOps

  • Home
  • About
  • Advertise With US
  • Reviews
  • Contact
  • Toggle search form

Change Account Lockout Threshold for Local Accounts in Windows: The reference account is locked

Posted on 29/11/202210/10/2024 Temitope Odemo By Temitope Odemo No Comments on Change Account Lockout Threshold for Local Accounts in Windows: The reference account is locked
  1. Home
  2. Windows
  3. Change Account Lockout Threshold for Local Accounts in Windows: The reference account is locked
Lockout7

The Account lockout threshold policy setting is one way you can prevent unauthorized access to your computer system. In this article, you will learn how to Change Account Lockout Threshold for Local Accounts in Windows 10 and Windows 11: The reference account is currently locked. An attack like a brute-force attack can be prevented when an automated login system is set up to try several combinations of login credentials. Please see How to manage costs with AWS Budgets, and Microsoft Account Password Reset via Web and Windows

But we also have some bad vectors out there who would like to cause a denial of service on a domain that has an account lockout threshold setup hitting the domain with several combinations of login credentials and making logging into the domain impossible for users.

When the number of attempts set on the policy is exhausted the account will be locked and it’s only an Administrator that can unlock it or you will wait for the specified number of minutes to expire and you can try to log in again.  The amount of value you can set for the sign-in attempts is between 1-999. Kindly take a look at the YouTube video demonstrating these steps.

Play
Video showing how to change the Local Administrator lockout threshold

If you want to read more on Account read these Local Administrators Account lockout is now available, How to Change User Account Type in Windows 10, How to set an account expiration date in Active Directory, Windows sign-in options, and account protection on Windows 11.

Change Account Lockout Threshold for Local Accounts in Windows

Follow the steps below on how to change the account lockout threshold  

1. Run this command secpol.msc to open the Local Security Policy.
2. Navigate to Account Policies > Account Lockout Policy in the left pane of Local Security Policy.

lockout2

Please see How to disable automatic screen lock in Ubuntu Linux. How to deploy MBAM for Bitlocker Administration, and How to create a Windows Server reference image using WDS. See how to fix “An Attempt Was Made to Reference a Token That Does Not Exist” in Windows 10.

Enter the Value for Invalid Logon Attempts

3. In the right pane of Account Lockout Policy, double-click on the Account Lockout threshold policy and type in a number between 0 and 999.

The number entered will be the number of sign-in attempts allowed before the account will be locked out. Click Ok.
lockout3

4. Once you click Ok. You can decide to change the Account lockout duration, Reset the account lockout counter after and Allow Administrator account lockout.

lockout4

5. Now go ahead to try with wrong password three times

lockout5

6. Once the Sign-in attempts are exhausted.

The system will be locked and you will see the below message.
lockout6

7. Using the command to change the Account lockout Threshold open the command prompt as Administrator and run this command.

This will display your current Account Policy settings

net accounts
image-61

Enter the below command and input the Number.

image-62
image-63

I hope you found this blog post on how to Change Account Lockout Threshold for Local Accounts in Windows 10 and Windows 11: The reference account is currently locked interesting and helpful. In case you have any questions do not hesitate to ask in the comment section.

5/5 - (1 vote)

Thank you for reading this post. Kindly share it with others.

  • Share on X (Opens in new window) X
  • Share on Reddit (Opens in new window) Reddit
  • Share on LinkedIn (Opens in new window) LinkedIn
  • Share on Facebook (Opens in new window) Facebook
  • Share on Pinterest (Opens in new window) Pinterest
  • Share on Tumblr (Opens in new window) Tumblr
  • Share on Telegram (Opens in new window) Telegram
  • Share on WhatsApp (Opens in new window) WhatsApp
  • Share on Mastodon (Opens in new window) Mastodon
  • Share on Bluesky (Opens in new window) Bluesky
  • Share on Threads (Opens in new window) Threads
  • Share on Nextdoor (Opens in new window) Nextdoor
Windows, Windows Server Tags:Microsoft Windows, Service Logon Account, User Account Control, Windows 10, Windows 11, Windows Server 2016

Post navigation

Previous Post: Set Special File Permissions with SUID or GUID and Sticky Bit
Next Post: CVE-2021-31693: VMware Tools for Windows update addresses a denial-of-service vulnerability

Related Posts

  • Featured image
    Exploring the Reasons to use or not use Screensavers in Windows Windows
  • Comprehensive Guide to Passkeys on Windows Devices
    Comprehensive Guide to Passkeys on Windows Devices Windows
  • Screenshot 2022 04 27 at 02.18.50
    Why does MBAM not automatically re-encrypt MBAM or Bitlocker-protected devices? Windows
  • nonRDP admin
    Allow RDP access for non administrators: Add User to Remote Desktop Users Group in Active Directory Windows Server
  • img 5c0128ea77f3f
    Systeminfo switches: How to use Systeminfo command-line tool switches Windows
  • BitLocker removal on Windows Server
    How to correctly disable BitLocker on Windows Server Windows Server

More Related Articles

Featured image Exploring the Reasons to use or not use Screensavers in Windows Windows
Comprehensive Guide to Passkeys on Windows Devices Comprehensive Guide to Passkeys on Windows Devices Windows
Screenshot 2022 04 27 at 02.18.50 Why does MBAM not automatically re-encrypt MBAM or Bitlocker-protected devices? Windows
nonRDP admin Allow RDP access for non administrators: Add User to Remote Desktop Users Group in Active Directory Windows Server
img 5c0128ea77f3f Systeminfo switches: How to use Systeminfo command-line tool switches Windows
BitLocker removal on Windows Server How to correctly disable BitLocker on Windows Server Windows Server

Leave a Reply Cancel reply

You must be logged in to post a comment.

Microsoft MVP

VEEAMLEGEND

vexpert-badge-stars-5

Virtual Background

GoogleNews

Categories

veeaam100

Veeam Vanguard

  • azurv2 1
    How to scale up and scale out on Azure AWS/Azure/OpenShift
  • image 64
    Windows Local Account Authorization and Access Control Windows
  • How to Fix 0xc000007b Error banner
    Fix 0xc000007b Error on Windows 11 While Launching a Game Windows
  • Azure Backup 1
    How to Install Azure Backup Agent AWS/Azure/OpenShift
  • term “git” was not used as the name of a cmdlet, function, script file, or executable Program recognised
    The term “git” was not used as the name of a cmdlet, function, script file, or executable Program recognized Version Control System
  • System Center
    Integrate Hyper-V: Install System Center Virtual Machine Manager Virtualization
  • maxresdefault 2 1
    How to disconnect a Remote Desktop User Windows Server
  • Azure AD Logo 1
    How to sync on-premises AD with Azure AD via Azure AD Connect AWS/Azure/OpenShift

Subscribe to Blog via Email

Enter your email address to subscribe to this blog and receive notifications of new posts by email.

Join 1,786 other subscribers
  • RSS - Posts
  • RSS - Comments
  • About
  • Authors
  • Write for us
  • Advertise with us
  • General Terms and Conditions
  • Privacy policy
  • Feedly
  • Telegram
  • Youtube
  • Facebook
  • Instagram
  • LinkedIn
  • Tumblr
  • Pinterest
  • Twitter
  • mastodon

Tags

Active Directory Azure Bitlocker Microsoft Windows PowerShell WDS Windows 10 Windows 11 Windows Deployment Services Windows Server 2016

Copyright © 2025 TechDirectArchive

Loading Comments...

You must be logged in to post a comment.