- a server task attempting to install agent onto computers - with wrong credentials
- An RSD automated task with the same purpose and cause
- some distributed repository that could not be disabled in some McAfee Agent policy and some computers use the invalid acount defined for this repository (we had this issue and the cause was invalid characters in the repo name)
- Some frequent update task with wrong credentials, see inheritance of the same in the system tree.
I hope I could help. Actually if the account failure audit messages are way too frequent, that might be other than ePO/above.