Change password in windows locks startup


Clients = Windows 2000 Prof users.
Server = Wind 2000 Server AD

When logging in to the newtwork some users are asked to change their password.

Submitting the old and new password, the login/startup process continiues,
but stops almost immedialtely at the "green" blank screen i.e stops before viewing the desktop with the icons and start menue.
The computer is unaccessable and can only be rebooted.

Restarting the computer and logging in with the new password, gives no error but windows stops
at the same blank screen.

Others users that are already logged in, change their password via Windows Security screen (ctrl-alt-del) can change their password
successfully and continue to work with the computer. But next time they reboot the PC, same startup problems occours for them as well.

About half of the users that have changed their passwords has been successful but the other half have had this problem.

Some of the users had Service Pack 2 in Win200 and we thought that was the problem, but different users with SP2 was both successful and
unsuccessful when changing their passwords. So there must some more reasons than old Service Pack versions.

To get pass this startup problem, login was made as admin, the user profile was removed, new login was made which created a new user profile,
and the profile settings was manually restored and the user was up and running.

But what is the real cause for this simple action of changing the password, which causes the startup process to lockup ?
Lost permissions of the user profile ?

Haven't seens this problem before, when users have changed their password, but it happend last week for some computers.


Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

I had a look on the microsoft site and found that SP4 takes care of some problems related to password changing.

Did you check the event logs on the machines in question for errors?

Try the following:
Users can receive the above error messages under a variety of conditions. The underlying cause for these errors is a security registry change involving the RestrictAnonymous value

This problem may also have been fixed in SP3:

When a Windows 2000-based domain controller receives an NTLM authentication request, it tries to validate the password in its database. If it does not succeed, it increments the bad password count, and passes the request to the primary domain controller because the database may not be synchronized.

If the primary domain controller responds to the domain controller that forwarded the request with successful validation, the bad password count for the user on the domain controller should be reset to 0. However, the domain controller is not resetting the count to 0.

This problem may only be seen in the Windows 2000 environment because UAS replication does not occur as frequently as in the Windows NT 4.0 domain environment. User passwords between domain controllers may be out of synchronization for longer period of time. Also, the bad password count field is not replicated between the domain controllers.


Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Windows 2000

From novice to tech pro — start learning today.