Hello, everyone....

We recently overhauled our backup methodology and we have a Windows 2008
Standard Edition server accessing four different NetWare 6.5 SP8 servers,
via CIFS, to copy files from the NetWare servers to the Windows Server. From
there they are backed up. We set up those NetWare servers with CIFS and use
a single userid (with a simple password) to backup from server to server.
That is all working fine as near as I can tell.

My problem is intruder lockouts on user accounts. The NetWare servers
running CIFS are giving NMAS intruder lockouts on a handful of users every
day. We seem to have about 8 or 10 users that it seems to be happening to,
with one person having it happen every day.

The users are using Windows XP Pro SP3 with Novell Client 4.91 SP5 and are
not accessing the Windows 2008 server at all. But three of the four NetWare
servers are ones they map drives to with every login. The fourth one is one
the netadmins map a drive to every time.

The NetWare servers are pretty well patched. I have put on numerous post SP8
patches on the servers.

We do not have any AD in place. We have a workgroup defined and everyone is
a member of that group. eDirecotry is 8.8 sp5 with al lot of post SP5
updates applied too.

I have management breathing down my boss' neck and he is looking a little




Delon E. Weuve
Senior Network Engineer
Office of Auditor of State
State of Iowa
United States of America