I have two users who are attempting to sign into Exchange via the Outlook client, and when they type their password incorrectly Exchange locks their domain account. We have a group policy that sets the account lockout threshold to 3. We have played with the number and 7 seems to be the smallest number that does not lock the user account. The domain controllers are both Windows 2000 Server and have SP4. If I use Outlook Web Access I do not have this problem. Both machines use Windows XP. Do you have any suggestions on what can be done to fix this issue?
Change the Reset account lockout counter. This determines the number of minutes that must elapse after a failed logon attempt before the counter is reset to 0 bad logon attempts. The range is from 1 minute to 99,999; this must be less than or equal to the account lockout duration.