Solved

Sync issue with VPN when users change password locally. Safe Boot is also used on laptops.

Posted on 2009-05-05
1
812 Views
Last Modified: 2012-06-21
I am working with a customer who has field agents with laptops. The field agent is offline about 95% of the time. They connect to the VPN maybe twice a month, which then gets them on the corporate network.  The customer wants to implement a 60 day password change policy.  The issue is that the agents will already have booted their laptops up and made a password change which is cached locally.  They may run like this for 2 weeks. When they try to connect to the VPN (which uses the same AD password for login), they will not be able to connect because they are attempting to use their new password.  The VPN is expecting the old password because AD server has not been updated yet.  How can we manage password changes and sync issues for these field agents who are offline most of the time but are still required to change their password every 60 days?
0
Comment
Question by:opie51
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
1 Comment
 
LVL 77

Accepted Solution

by:
Rob Williams earned 500 total points
ID: 24316555
Are you using the Windows VPN client by any chance? If so, and the machines are members of the domain, at logon there is a check box option to allow the user to use a dial up connection. Selecting this will then allow the user to connect to the VPN, which completes and allows the user to have a proper network connected session, rather than one using cached credentials. If the user then changes their password during this session it is changed in AD and on the local machine.

It is a common problem, and this is one option.
0

Featured Post

Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

OpenVPN is a great open source VPN server that is capable of providing quick and easy VPN access to your network on the cheap.  By default the software is configured to allow open access to your network.  But what if you want to restrict users to on…
While rebooting windows server 2003 server , it's showing "active directory rebuilding indices please wait" at startup. It took a little while for this process to complete and once we logged on not all the services were started so another reboot is …
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…
This video shows how to use Hyena, from SystemTools Software, to update 100 user accounts from an external text file. View in 1080p for best video quality.

710 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question