Event ID: 4767A user account was unlocked
A user account was unlocked. Subject: Security ID: %4 Account Name: %5 Account Domain: %6 Logon ID: %7 Target Account: Security ID: %3 Account Name: %1 Account Domain: %2
This event generates every time a user account is unlocked.
For user accounts, this event generates on domain controllers, member servers, and workstations.
ISO 27001:2013 A.9.2.1
Lookup Audit Policy Configuration Settings
C:\> AuditPol.exe /get /subcategory:"User Account Management"
LEFT/RIGHT arrow keys for navigationBack to List