Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Chriss Miller on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Remote Access and passwords

Status
Not open for further replies.
cptkirkh

cptkirkh

MIS
Feb 20, 2001
95
US
Ok folks i need some help. When my remote users log and the domain asks them to change their passwords they can chnage without nay problems. When thye log off the network and want to log on to the laptop again it will not let them use the new password. They then will need to log on using the old password and then dial in using the new password. Is there a way to make sure that the laptop password changes as well as the domain password??? Am i missing something on the RAS setup. If i have the users use the dial up to connect option at the ctrl-alt-del screen they can connect but it then the laptop acts like this is the first time they have logged on the laptop. HELP???
 
Sort by date Sort by votes
Are they Win2K laptops? It sounds like the VPN clients are using a domain login locally, so you should force a replication after the password is changed to update the local copy to the new password.
 
Upvote 0 Downvote
Force Replication on the RAS Server?? How would I do that?
 
Upvote 0 Downvote
If you have a Win2K domain, the RRAS server should be using the authentication from the domain for the user accounts. So if you have a Win2K laptop (called "machine") and a user (named "john_doe") in your domain ("yourcorp.local") then there are two possible accounts depending on your configuration.

There is one user account stored on the domain controller, the user normally deals with the signin as:
john_doe
password
yourcorp.local

This account is also cached on the laptop, in case the domain is unavailable when he tries to sign in (and you see this error message:)
"No domain controller is available, Windows is using the local profile to log you in..."

If your user changes the domain account password while logged in, the domain controller must replicate the new account properties to the laptop's cache. If this doesn't happen your user must log onto the laptop with his old password, then log in again to the domain with his new password.

If this happens only on one user (or two) remote users, delete the user account from the laptop and log in while connected locally to the domain. If this happens on every remote users machine, check your domain security policy to see what the local account cache is setup as (it could have been disabled completely if you never planned to have any remote users...)
 
Upvote 0 Downvote
Do they reboot after disconnecting from a RAS session they have changed their password in before logging back onto the laptop? If so then it's odd the locally cached password isn't being updated. If they aren't doing a reboot then they must.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

MaioMaio
  • Locked
  • Question
Server Remote Desktop License
Replies
0
Views
519
MaioMaio
MaioMaio
tscstl
  • Locked
  • Question
access to local folder
Replies
1
Views
362
hairlessupportmonkey
hairlessupportmonkey
penguinroundup
  • Locked
  • Question
programmatically delete all saved passwords for IE for any user
Replies
0
Views
307
penguinroundup
penguinroundup
StevenFromSouth
  • Locked
  • Question
VPN Connects but cannot access remote network computers or folders
Replies
1
Views
323
StevenFromSouth
StevenFromSouth
iCDT
  • Locked
  • Question
Remote Desktop Web Access ( No application available)
Replies
2
Views
307
hairlessupportmonkey
hairlessupportmonkey

Part and Inventory Search

Sponsor

Back
Top