Common problem: a user is getting locked out of Active Directory "mysteriously"
The challenge: a way to grep or find through the whole computer's log files to figure out whats been making requests recently.
so far I haven't been able to pull it off. something like
sudo grep -r -i kerb .
doesn't yield much. I think this is a universal challenge IT support faces and admins avoid. I assume there isn't a tool to help yet because no one is smart enough to make one, but hey, maybe one of us could?
