In this post I recomposed (Source:Ian Farr) a Powershell script which will ask for the locked user account name and then will scan the active directory DCs security log for relevant events and will present the user lock time and source of the lock out like so:
How to: Find the source of Account Lockouts in Active Directory
It is a very common problem in Active Directory when Users change their password in a domain environment, they might get locked out repeatedly and it can be a frustrating process to identify the source of the lockout.
Try the following steps to track the locked out user and also find the source of AD account lockouts. This procedure assume that you know the username which is locked out.
How to create a MS Configuration manager report that will Count All Computers for each Model
This guide will show you how to create a report in Microsoft System Center Configuration Manager 2012(R2) / Current branch 1702. In this example we will be creating a report which lists all system models and displays a count of each model.