Solved

Stuck in loop change password every three days

Posted on 2004-04-26
7
691 Views
Last Modified: 2011-09-20
I am experiencing a strange issue with some users getting stuck in a loop with needing to change their password every three days - everytime they logon and even after they change it!. This is a random problem that seems to happen to one or two users every few months. Here is the password policy. The problem seems to go away (on its own) for some users but not others. Anyone see an issue below or have any idea what might cause this.

Policy      Computer Setting
Enforce password history      4 passwords remembered
Maximum password age      90 days
Minimum password age      1 days
Minimum password length      5 characters
Passwords must meet complexity requirements      Disabled
Store password using reversible encryption for all users in the domain      Disabled
0
Comment
Question by:msice
  • 3
  • 3
7 Comments
 
LVL 31

Accepted Solution

by:
Gareth Gudger earned 500 total points
ID: 10920334
You could try to force the policy back down...
gpupdate /force = XP clients/server 2003
secedit /refreshpolicy = 2000
0
 
LVL 31

Expert Comment

by:Gareth Gudger
ID: 10920345
Or actually for 2000
secedit /enforce will be better.
0
 
LVL 7

Author Comment

by:msice
ID: 10920385
Ok so try secedit /refreshpolicy user_policy /enforce
What do you think is causing this.
0
Best Practices: Disaster Recovery Testing

Besides backup, any IT division should have a disaster recovery plan. You will find a few tips below relating to the development of such a plan and to what issues one should pay special attention in the course of backup planning.

 
LVL 2

Expert Comment

by:BigP
ID: 10920420
Check the workstations are actually participating in the domain correctly.

Presume you have checked the Event Viewer/Audit Logs ?
0
 
LVL 31

Expert Comment

by:Gareth Gudger
ID: 10920437
It could be that the policy just needed to be forced down.
0
 
LVL 7

Author Comment

by:msice
ID: 10920667
BigP

Yes Events seem to be fine now, but there are a few errors from a while back that are interesting.
3/1/2004> Windows cannot unload your registry file.  If you have a roaming profile, your settings are not replicated. Contact your administrator.  
DETAIL - Access is denied. , Build number ((2195)).
-----------------------------------------------------------------
This one probably due to a server reboot.
2 Months ago> No Windows NT or Windows 2000 Domain Controller is available for domain DURECT.COM. The following error occurred:
There are currently no logon servers available to service the logon request.  

diggisaur -
Interesting as the only commonality at all I can find between the affected users is that it might be the first 90 day initiated forced password change that the loop happens on - sense the computer was setup and added to the domain (but some work fine without the issue). Why would we need to force the policy just for the password policy to work correctly when all other policies are working fine for the recently configured computers? Is there a recommended way to make SURE the policy is updated/refreshed every time a user logs on (I thought it did by default).
0
 
LVL 7

Author Comment

by:msice
ID: 10943876
That fixed the issue but, still don’t know why this is happening any thoughts?
0

Featured Post

Simplifying Server Workload Migrations

This use case outlines the migration challenges that organizations face and how the Acronis AnyData Engine supports physical-to-physical (P2P), physical-to-virtual (P2V), virtual to physical (V2P), and cross-virtual (V2V) migration scenarios to address these challenges.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
NT Print server: Should be able to print? 1 605
Restoring a deleted user from Windows 2000?! 2 151
Pskill not working on VBS script 4 154
Server 2012R2 Foundation and Server 2000 3 124
NTFS file system has been developed by Microsoft that is widely used by Windows NT operating system and its advanced versions. It is the mostly used over FAT file system as it provides superior features like reliability, security, storage, efficienc…
February 24, 2017 — On February 23, Travis Ormandy, a vulnerability researcher at Google, reported on Twitter (https://twitter.com/taviso/status/834900838837411840) that massive stores of data have been leaked by CloudFlare, a company that provide…
This tutorial gives a high-level tour of the interface of Marketo (a marketing automation tool to help businesses track and engage prospective customers and drive them to purchase). You will see the main areas including Marketing Activities, Design …
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…

777 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question