Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17


Certificates gone Wrong!

Posted on 2004-08-19
Medium Priority
Last Modified: 2010-04-11
We are having a Problem here in our Credit Union...

We use certificates to validate users onto certain websites (Federal Reserve etc etc), under win98 it was working fine, butwe are now upgrading most machines to WinXP but the problem is when we do that, the Certificates work fine, until the user has to change his/her password (which is set to change every 90days).  I found a link on Microsoft that says just to revert to the old password, but this sortof defeats the purpose of having expiring passwords...

Anybody knows a way around this?

Question by:civicex2g
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2

Expert Comment

ID: 11850034

please visit:;en-us;331333&Product=winxp

this may help but at the end the document for such conditions it says:
This behavior is by design.


Author Comment

ID: 11850994
Thank you sir for that article, unfortunately that was one of the ones I read already but did not help we dont use roaming profiles... but we just solved the problem by extending the users passwords to 120 days instead of 90 so that they expire the same time the certificates do, ohwell thanks alot though.

Accepted Solution

saito1 earned 1000 total points
ID: 11851035
hi civicex2g,

I guess that you read it. and yes as I wrote above, this behavior is by design so it means there is nothing to do unfortunatelly.
maybe better you choose "password doesn't expire" then you will not have this problem except user changes password manually...

happy if I could help you...



Author Comment

ID: 11851043
yeah im going to do what you said and just put those certain users not to expire... thanks for you help!

Expert Comment

ID: 11851055
and also you can choose the "user can not change password" so if user can not change password and password never expires you never get problem with certificates :-)


Featured Post

Looking for the Wi-Fi vendor that's right for you?

We know how difficult it can be to evaluate Wi-Fi vendors, so we created this helpful Wi-Fi Buyer's Guide to help you find the Wi-Fi vendor that's right for your business! Download the guide and get started on our checklist today!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

The recent Petya-like ransomware attack served a big blow to hundreds of banks, corporations and government offices The Acronis blog takes a closer look at this damaging worm to see what’s behind it – and offers up tips on how you can safeguard your…
What's worse than having your data encrypted by ransomware? Getting attacked by a so-called "wiper," which simply destroys the data and offers you no hope of ever seeing it again.
This video Micro Tutorial shows how to password-protect PDF files with free software. Many software products can do this, such as Adobe Acrobat (but not Adobe Reader), Nuance PaperPort, and Nuance Power PDF, but they are not free products. This vide…
Sometimes it takes a new vantage point, apart from our everyday security practices, to truly see our Active Directory (AD) vulnerabilities. We get used to implementing the same techniques and checking the same areas for a breach. This pattern can re…

688 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question