User has stated that his provided credentials will work, and then after several weeks they will no longer work on his attempt to log in.  Is there an application log that can be investigated for what might have occured to ensure the password was not changed by someone else?