Banks, credit unions, insurance companies,
NetWrix Account Lockout Examiner generates excessive traffic in our network
|Cause||NetWrix Account Lockout Examiner gets information from Windows security logs. The product connects to domain controllers (DCs) to find lockout events. Then it connects to workstations to find detailed information about the invalid logon attempts, which caused the lockouts. When the product is configured to monitor all DCs in your domain, it establishes connections with all DCs as well as their subject workstations.|
To reduce the bandwidth usage, do the following:
This will change method of event collection and should reduce bandwidth utilization.
There is also an option to disable examination of workstations. In this case name of the process that cause invalid logon will never be shown..