# Resolving Remote Desktop Account Lockout using Group Policy

### Introduction

Sometimes when multiple incorrect login attempts are made while connecting through Remote Desktop Protocol (RDP), the Windows system automatically locks the user account for security reasons. This prevents unauthorized access attempts.

To resolve this issue, the **Account Lockout Policy** can be modified using the **Local Group Policy Editor**.

***

**Step 1: Error Message While Connecting to Remote Desktop**

When attempting to log in via Remote Desktop, the following error message appears:

> *"As a security precaution, the user account has been locked because there were too many logons attempts or password change attempts."*

This means the account has been temporarily locked due to multiple incorrect login attempts.

<figure><img src="https://1876135298-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FEC5NwtFshv6EATOemuUn%2Fuploads%2F8LUudcuLsQ4aSdZN3Exk%2Fimage.png?alt=media&#x26;token=e0a5437c-6d9c-4324-91f0-7dc2b33a16cb" alt=""><figcaption></figcaption></figure>

**RDP account locked error message.**

***

**Step 2: Open Group Policy Editor**

1. Open the **Start Menu**.
2. In the search bar, type **Edit Group Policy**.
3. Click on **Edit Group Policy** from the search results.

<figure><img src="https://1876135298-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FEC5NwtFshv6EATOemuUn%2Fuploads%2F45Fz09TewYLJjAFcitkF%2Fimage.png?alt=media&#x26;token=272fd5cd-7ae1-41f3-ab4c-ff115828c08d" alt=""><figcaption></figcaption></figure>

**Search Edit Group Policy in Windows Settings**

***

**Step 3: Navigate to Computer Configuration**

Once the **Local Group Policy Editor** window opens:

1. Click on **Local Computer Policy**.
2. Select **Computer Configuration**.

<figure><img src="https://1876135298-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FEC5NwtFshv6EATOemuUn%2Fuploads%2F9ywKYJdYFBszXY8ojBvS%2Fimage.png?alt=media&#x26;token=bdff1b4e-47d3-4e78-96cb-93db5d926f0b" alt=""><figcaption></figcaption></figure>

***

**Step 4: Open Windows Settings**

Inside **Computer Configuration**:

1. Click on **Windows Settings**.

<figure><img src="https://1876135298-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FEC5NwtFshv6EATOemuUn%2Fuploads%2FNSvf3Z3FrlBAIPy2b4iQ%2Fimage.png?alt=media&#x26;token=536ba0e1-e71c-4fda-808a-2f697fcf4e4f" alt=""><figcaption></figcaption></figure>

***

**Step 5: Open Security Settings**

Inside **Windows Settings**:

1. Click on **Security Settings**.

<figure><img src="https://1876135298-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FEC5NwtFshv6EATOemuUn%2Fuploads%2FC8wmNy5VgiautfHpwJYw%2Fimage.png?alt=media&#x26;token=a0b427b2-32a6-4401-b20e-a6e56486c4f7" alt=""><figcaption></figcaption></figure>

***

**Step 6: Open Account Policies**

Inside **Security Settings**:

1. Click on **Account Policies**.

<figure><img src="https://1876135298-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FEC5NwtFshv6EATOemuUn%2Fuploads%2FgvWTYd8tm20quyyDdWtP%2Fimage.png?alt=media&#x26;token=9bece9fb-92c1-4bce-bc84-b5b94bb1a810" alt=""><figcaption></figcaption></figure>

***

**Step 7: Open Account Lockout Policy**

Under **Account Policies**:

1. Click on **Account Lockout Policy**.

<figure><img src="https://1876135298-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FEC5NwtFshv6EATOemuUn%2Fuploads%2Fieq7zMEZNepekQ3qYAiJ%2Fimage.png?alt=media&#x26;token=1de93f19-aecd-4195-b36d-6c45ee2f52e2" alt=""><figcaption></figcaption></figure>

***

**Step 8: Modify Account Lockout Threshold**

In **Account Lockout Policy**:

1. Double-click **Account lockout threshold**.
2. Set the value to **0 invalid logon attempts**.

Setting this value to **0** means the account will **never be locked due to failed login attempts**.

<figure><img src="https://1876135298-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FEC5NwtFshv6EATOemuUn%2Fuploads%2FFQCP90lN9dKjNOC9Eykv%2Fimage.png?alt=media&#x26;token=a716c933-6c77-4fdb-9ec4-29601f84b2d4" alt=""><figcaption></figcaption></figure>

<figure><img src="https://1876135298-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FEC5NwtFshv6EATOemuUn%2Fuploads%2FS4RqK1BkuHonoLWDJMlK%2Fimage.png?alt=media&#x26;token=8d8f9ccc-d686-46ed-b0df-202c0bb4dec4" alt=""><figcaption></figcaption></figure>

***

**Step 9: Apply the Changes**

1. Click **Apply**.
2. Click **OK** to save the configuration.

Now the system will not lock the account after multiple failed login attempts.

***

**Conclusion**

By modifying the **Account Lockout Threshold** policy through the Local Group Policy Editor, we can prevent user accounts from being locked due to multiple incorrect login attempts. This helps administrators troubleshoot login issues more efficiently in environments where Remote Desktop access is frequently used.