Endpoint Protection

 View Only

  • 1.  Admin account disabled

    Posted Nov 07, 2012 07:06 PM

    Hi,

    I am using SEP 11 and I cannot logon to the SEP console with my admin account, but I am sure my password is correct since I was only using it yesterday. I will logon tomorrow with the inbuilt admin account, but are there any logs or event messages that I can check to see if someone has disabled my account?

     

     

    Thanks



  • 2.  RE: Admin account disabled

    Posted Nov 07, 2012 07:27 PM

    If you login with the built in admin account, you can check the Admin page >> Administrators tab and select the username you're trying to log in with. It will give you the details on when it was locked. You can also check the system log on the Monitors page. This should give you more detail as well.



  • 3.  RE: Admin account disabled

    Posted Nov 08, 2012 03:23 AM

    Hi

    Please use reset pass utility to resolve the same...

    Regards

     



  • 4.  RE: Admin account disabled

    Broadcom Employee
    Posted Nov 08, 2012 01:34 PM

    Hi,

    I believe it's not possible to check with any logs or event viewer.

    Check this idea as well:

    https://www-secure.symantec.com/connect/ideas/have-more-details-logs-regarding-computer-accounts-movedcopieddeleted-events         

     



  • 5.  RE: Admin account disabled

    Posted Nov 08, 2012 01:51 PM

    u can check the admin activity in the console. you might find something.

    most of the time its because of passowrd. just reset it .:)



  • 6.  RE: Admin account disabled

    Posted Nov 09, 2012 01:08 AM

    You could also use the forgot password utility option on the login page.