c – 传递给LogonUser()的密码不正确,但未按预期锁定Active Dire

Windows客户端store cached credentials,用于在Active Directory服务器不可用的情况下进行域登录.在这种情况下,缓存的凭据将允许用户登录到本地计算机.

Cached credentials are used when using domain credentials for authentication to a computer that is not connected to a domain controller. Each time a domain user logs on,the operating system generates the cached credentials and stores them in the Security hive of the operating system.

根据微软的Account Lockout Policy Technical Overview：

Account lockout policies apply to domain accounts. Account lockout is an interaction between a client computer and a domain controller and implements the following process:

在没有看到您的代码的情况下,我怀疑登录尝试是针对本地计算机而不是域进行的.这些不计入停工政策.这允许用户无问题地登录到域.