Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations wOOdy-Soft on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

VPN and password changes

Status
Not open for further replies.
MTVW

MTVW

IS-IT--Management
Sep 18, 2003
110
US
Any idea why I cannot change passwords via VPN from the ctrl-alt-delete screen?
 
Sort by date Sort by votes

Are you authenticating the VPN session using kerberos?

Assuming you are, I would have expected that to work. I can only theorize that the VPN session is partly encrypted using the password as one of they keys, and you aren't being allowed to change that mid-stream. I will keep the thread emailing me though, as I'm in a similar situation and am eager to hear the opinion of someone more knowledgeable than myself.

My one suggestion is to make sure that in the list of systems which the password is being changed for, I would make sure the VPN client isn't included in that.
 
Upvote 0 Downvote
We use group authentication for VPN with 2 different group ids..one for users and one for admins with no restrictions.
Neither of them work. Connect remotely via vpn...then select ctrl-alt-del and change password....no go.
 
Upvote 0 Downvote
You can't change passwords while connected via VPN. I forgot the reason why, but you can't.
 
Upvote 0 Downvote

I bet the ADS password is used as part of the encryption keys. Just a theory. When my password expires next I'll have to give it a shot while in via RDP.
 
Upvote 0 Downvote
I would think you could. It worked in an NT domain.
Maybe it has to do with security...
 
Upvote 0 Downvote
It works now. Made some policy adjustments and also made sure the needed ports were open.
 
Upvote 0 Downvote
Well in my case when we did the upgrade naturally the settings from NT migrated over. The old NT domain policy had minimum password age was set to 30 days. I don't know who set that up. Changed it to 0 so users can immediately reset the password. This is where it should be. lol

Anyway port 464 udp/tcp should be open
 
Upvote 0 Downvote
I had no problem changing my password once RDPed in through the VPN, but my laptop continued using the same password for local logins until I had it in-house and synced it up with the domain. This probably wouldn't have been the case if I had the ports listed above open.

However, the reason I am posting is to dispell my theory that the login password had anything to do with the encryption. It definitely does not.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

Mohamed-IT
  • Locked
  • Question
Windows server 2019 password locked
Replies
1
Views
295
strongm
strongm
bechna
  • Locked
  • Question
Windows Server and VPN Setup
Replies
1
Views
311
DrB0b
DrB0b
StevenFromSouth
  • Locked
  • Question
VPN Connects but cannot access remote network computers or folders
Replies
1
Views
332
StevenFromSouth
StevenFromSouth
bechna
  • Locked
  • Question
Unable to connect to VPN windows server 2019
Replies
0
Views
269
bechna
bechna
FreeSoldier
  • Locked
  • Question
Server 2012 R2 VPN Encryption
Replies
1
Views
299
tacohunter
tacohunter

Part and Inventory Search

Sponsor

Back
Top