I have windows 2003 domain controllers, an exchange Online through O365, and an onsite sharepoint portal. People access their emails through OWA and outlook. Also, they log in through sharepoint portal using their active directory credentials. And, here are my questions:
1. Can the account lockout be confined to a particular OU or a group(s) in windows 2003 active directory? The policy is set in the computer settings. So, does that mean it can only be applied to the computers within the domain (or OU) and not the users?
2. If account lockout policy is set inthe default domain policy, how will it affect users who put in wrong password through exchange online OWA and outlook?
3. If account lockout policy is set in the default domain policy, how will it affect users who put in wrong password through the sharepoint portal?
Any expert (folks who have done and know it inside out) opinion will be highly appreciated.