I got this figured out and fixed. It turns out that PHP was not cleaning up session files, so when a user logged in it would pick up an existing session file and would lock the user out. I reconfigured the session handling as well as some of the Wincache settings and no more lockouts.
Thanks for your help and suggestions.
Scott