If you are a Windows 10 user and suddenly the error message “the referenced account is currently locked out and may not be logged on to” pops up!
This specifically occurs when the system’s security features are temporarily disabled for an account after multiple unsuccessful login attempts.
One can often observe this right after enabling Remote Desktop Protocol (RDP) access, and it further helps protect against all sorts of unauthorized access.
Understanding The Overall Error
So, what causes the error: “the referenced account is currently locked out”? Well, this typically happens when you repeatedly enter an incorrect password.
Every version of Windows has a security feature that can easily lock accounts if the user fails to enter the correct password after multiple attempts. This helps the operating system to prevent all sorts of unauthorised access.
Now, whenever someone sees a notification like this, it’s obvious they’re going to freak out a little! The account will remain locked out for a limited time before automatically unlocking again!
The Referenced Account Is Currently Locked Out: How Can You Resolve The Issue?
1. Contact the IT helpdesk for any kind of immediate assistance
If you feel you need immediate access to your account, contact your IT helpdesk to request that your account be unlocked.
Phone support: You can call the IT helpdesk for better assistance, so that they can help you unlock your account.
2. Have a colleague contact the IT
If you urgently need access but are unable to contact the helpdesk directly, have a colleague contact IT or ask someone to send an email or open a support ticket on your behalf.
They should use a clear subject line and body text, such as:
Subject: “Windows account is locked”
Body: “[Your Name]’s Windows account is currently locked out. Can we unlock their account?.”
For example:
Subject: Windows account is locked
Body: John Doe’s Windows account is currently locked out. Can we unlock their account?
3. Wait for the account to unlock itself
If immediate access isn’t necessary or the IT helpdesk is unavailable, you can simply wait for the automatic lockout period to elapse.
Windows usually unlocks the account after approximately 20 minutes. Try logging in again after that time has passed.
Enabling Remote Desktop And The Associated Risks
Allowing Remote Desktop Protocol (RDP) on a Windows 10 machine not only provides easy remote access! It also opens up some security gaps.
The main reason is that it is easier now for someone to try to access your account and get it locked out.
The details are as follows:
Susceptibility to Brute-Force Attacks: Cybercriminals regularly use automated tools that attempt to log in with guessed passwords.
Windows 10 has a security system that works against those attacks and locks the account after a certain number of failed attempts. This is often the case in these types of attacks, as they go on in a stealth,y automated manner.
Extent of External Threats Increased: When the RDP port is open and accessible from the internet, it becomes easier for hackers and other malicious actors to identify and attack it.
One of the most common ways hackers access systems is by using tools that scan networks for RDP connections. Then make unauthorized login attempts.
Weak Credentials Associated with Risks: Accounts with common usernames (e.g., ‘admin’ or ‘user’) or weak passwords are the first ones targeted.
Attackers repeatedly try to log in, and they are likely to succeed in locking the account out due to the reduced number of failed attempts required.
Adjusting The Overall Lockout Policies
If you face the issue “the referenced account is currently locked out” when using Remote Desktop (RDP) to access your Windows 10 machine from another location, you can resolve it by unlocking the account.
However, this option increases the risk of security problems on your PC, especially when they involve accounts being locked out due to unauthorized login attempts.
To better manage the security measures, you can change the following settings:
- Account Lockout Duration: Specify the length of time that the account will be locked before it is reopened for use.
- Account Lockout Threshold: Indicates the maximum number of incorrect password attempts before the account is locked.
- Reset Account Lockout Counter After: Indicate the span of time that the count of failed logins must be at zero for clearing to be done.
What Are The Preventive Measures That You Can Follow for Remote Desktop?
The pros of enabling RDP on a Windows Virtual Private Server (VPS) for remote management purposes are numerous.
Nonetheless, it is imperative to be aware of the security risks associated with it, such as account lockouts caused by brute-force attacks.
Taking the right security measures is essential to protect against these potential threats.
The following are the most important techniques for making security better:
- Implement Strong Password Policies: Use complex, unique passwords for all accounts.
This significantly reduces the likelihood that an attacker will successfully brute-force credentials.
- Change the Default RDP Port: By default, RDP uses port 3389. Changing this to a non-standard port, such as 9842.
This can make it less obvious to automated attackers scanning for default ports.
- Use Network Level Authentication (NLA): Enable NLA to require an additional authentication step before a full remote session is established.
This helps mitigate brute-force attacks by verifying the user’s identity early on.
- Enable Account Lockout Policies: Configure your system to automatically and temporarily lock an account after a specified number of failed login attempts. This is a primary defense against ongoing brute-force attacks.
- Employ Firewalls and VPNs: Use firewalls to control network access to the RDP port strictly.
Connecting via a Virtual Private Network (VPN) can also secure the connection tunnel, significantly enhancing the overall security of remote sessions.
- Regularly Monitor and Update Systems: Keep your operating system and security software up to date.
Continuously monitoring network activity for any suspicious behavior is also an important proactive security measure.
Read Also:
