Admin Account Continuously Locks Out

[cderow]

I am having a problem with one of my servers where every few minutes it will display the error "Intruder lock out on account Admin" on the console. I have recently changed the admin password and all of this started when I rebooted this particular server.

I suspect there is a module on this server trying to load with the old password, but I cannot find the source of the problem. I have the GWIA, Etrust 7.1, webaccess, web server, and web manager modules loaded on this server. Under consoleone, the last intruder address displays "12". Is there a way I can see what is trying to load with the old password and is there a right and wrong way to change the admin password?

 

[marvhuffaker]

As a rule of thumb, it's generally better to have a utility account with a very strong password that doesn't have to change. Use it instead of ADMIN when setting up various services.

It might be Webaccess that is doing that. I see that a lot, but can't remember for sure.

Marvin Huffaker, MCNE

http://www.redjuju.com

 

[terry712]

webaccess password is held in the .ncf
strtweb

 

[cderow]

Thank you both for your reponses. It turns out that it was webaccess causing the problem.

marvhuffaker,I will be making that utility account you spoke of in your post.

Thanks again.