Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

Query on changing password in AD

Posted on 2009-03-29
1
Medium Priority
?
204 Views
Last Modified: 2012-05-06
Hi Guys

I have something that is stumping me...

If I change my password within AD (we are running at 2003 functional level)...is this change made on the DC I am connect to (as can be seen using the SET command on the local PC), or the PDC Emulator?

I am just trying to get my head around what the PDC Emulator actually does? I thought all DC's in a domain were equal to others?

Cheers!
0
Comment
Question by:kam_uk
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
1 Comment
 
LVL 27

Accepted Solution

by:
bluntTony earned 1000 total points
ID: 24013035
The password change will be made on the domain controller you are connected to. The change is then replicated around the domain as a
However, the PDC emulator gets preferential replication for password changes - it will be informed as soon as possible, regardless of it's location. Even if it's the other side of a site link, the change will replicate ASAP. The reason for this is -
When you log in, if the authenticating DC refuses your password, the request is then automatically referred to the PDC emulator (just in case your password has been recently changed). Only when the PDC emulator also refuses the password will your login attempt fail.
This link explains the three type of replication including password changes: http://blogs.technet.com/kenstcyr/archive/2008/07/05/understanding-urgent-replication.aspx
Hope this explains...
0

Featured Post

Office 365 Training for Admins - 7 Day Trial

Learn how to provision tenants, synchronize on-premise Active Directory, implement Single Sign-On, customize Office deployment, and protect your organization with eDiscovery and DLP policies.  Only from Platform Scholar.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Group policies can be applied selectively to specific devices with the help of groups. Utilising this, it is possible to phase-in group policies, over a period of time, by randomly adding non-members user or computers at a set interval, to a group f…
Microsoft Office 365 is a subscriptions based service which includes services like Exchange Online and Skype for business Online. These services integrate with Microsoft's online version of Active Directory called Azure Active Directory.
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …
Attackers love to prey on accounts that have privileges. Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …
Suggested Courses

705 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question