RoccadeColin
IS-IT--Management
As part of our security model we have enforced password rotation across our actrive directory. One department of users have an intranet page (running on an IIS server in the AD) which they run on an Active Desktop providing them with quick acess to important information.
When the users have to change their password something on their Windows XP based workstation (and we think related to their active desktop or intranet access) seems to remember the old password.
This results in them being able to login to their system once and then having problems with the intranet. If they then logout and login they find their account in the active directory is locked out.
So far we have found that to clear this, we have to clear their internet cache, remove any locally remembered passwords in the User Accounts area of Control Panel on their machine, temporarily disbale their active desktop and then get the administrator to change their AD/domain password for them.
XP machine is patched to SP1 with all applicable, later hotfixes
Active Directory servers are patched to SP3
Any ideas on this would be gratefully appreciated.
When the users have to change their password something on their Windows XP based workstation (and we think related to their active desktop or intranet access) seems to remember the old password.
This results in them being able to login to their system once and then having problems with the intranet. If they then logout and login they find their account in the active directory is locked out.
So far we have found that to clear this, we have to clear their internet cache, remove any locally remembered passwords in the User Accounts area of Control Panel on their machine, temporarily disbale their active desktop and then get the administrator to change their AD/domain password for them.
XP machine is patched to SP1 with all applicable, later hotfixes
Active Directory servers are patched to SP3
Any ideas on this would be gratefully appreciated.