Enabling Debug Logging for the Netlogon Service
Here is a easy way to find out where the user is trying to logon to. Great way to find out why they always have account lockout.
To enable netlogon logging:
An log under %windir%\debug\netlogon.log will be created and here we can see where the user is trying to logon to.
To disable netlogon logging: