Currently we are in the process of migrating UPN of the users to due to company re branding. We also change the user logon name to match with email address.
Before the migration user logon name & user logon name (pre-windows 200) were same. After the migration windows logon name part changed to first name.lastname and also UPN got changed to match with email domain.. samaccountname
After this migration if user changes the password, it gets locked out and source of the lockout shows as ADFS server. We have ADFS 2.0 version so we do not have a mechanism to identify the real source.
Is there any way to identify which application causes the lock out. We have users who does not have mobile devices and still it gets locked out. MS says its know behavior after the UPN change.