Changing the Default 'domain' when asking for credentials

We have an AD environment running Exchange 2003 and a bunch of XP Pro computers running Office 2003.  Occassionally, if someone's user password expires or is changed while their laptop is off the network the next time they attempt to connect to Exchange via Outlook 2003 a login box pops up as illustrated in the screen shot attachment.  I'd like the domain name to appear where the server name is appearing as they are using their AD login creds to connect.  It, for some reason, defaults to Exchange Server server name in this box.  If a password is mistyped it defaults again to the server name and not the domain name.
Login-Screen.jpg
LVL 1
ChocolateRainAsked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

y_dubCommented:
ChocolateRainAuthor Commented:
Thanks for the article that you linked me to, but it only refers to the OWA and not Outlook 2003 as part of the Office suite.  I read it thoroughly and it didn't apply, especially since our OWA is already working without this problem.

Premkumar YogeswaranSr. Analyst - System AdministratorCommented:
Hi,
It is a defult activity of the server to ask the credential for the particular login.
You can over come this by Lock and Unlock the system once in this scenario.
So it wont ask for the password again.

Cheers,
prem
Making Bulk Changes to Active Directory

Watch this video to see how easy it is to make mass changes to Active Directory from an external text file without using complicated scripts.

ChocolateRainAuthor Commented:
Thanks for the response Premglitz but that is only if the password needs to be updated so the account level Windows authentication goes through without asking the user for a password which is how Outlook works by default to act as sort of a SSO for all Windows Authentication enabled websites and programs.

But the question I'm asking is specifically if they ARE to be asked their password it is a lot more intuitive to have the user be able to input their password than to instinctively know to lock and unlock their computer which would fix it, as you are suggesting. And as a function of entering their password successfully it would be nice for the domain name to appear in the login box rather than the worthless server name, as they are connecting to the Exchange server with their Domain creds, not the local creds of any account on that server.
Premkumar YogeswaranSr. Analyst - System AdministratorCommented:
i can understand the scenario...!
But if it is logged in with single sign on SSO it wont prompt for the password in the outlook
But if you changed the password and connected to the network so you need to enter the password once to get the access token from the network.

Here in exchange it prompts for the credential with the mailbox server name. As i know we dont have a fix for this.

AD Will replicate the password changes to exchnage. so you need to update the password once in that credential.

Since it is asking for the exchange server name because it is showing the path of your mailbox in exchange server.
ChocolateRainAuthor Commented:
I just want you to know that we don't have an additional 3rd party SSO, but I was just illustrating the effects of Windows Authentication and how it auto-authenticates with your user creds with each Windows Authentication enabled program you connect to.  This function itself is a Kerberos SSO function (at least according to wikipedia).  

So you are saying that there is no fix for this?  
Davis McCarnOwnerCommented:
So, Lock/Unlock or Logoff/Logon are not options and there is apparently no way to force a local logoff if the password has expired.  With those facts in mind, I went looking for a script which might make the user change their password a day or two early and found this:
http://www.netwrix.com/password_expiration_notifier_freeware.html
"The Password Expiration Notifier periodically checks all users in the specified Active Directory domain or OU to detect ones whose passwords are about to expire in a specified number of days, and then sends customizable notification e-mails to the account owners. The tool also sends summary reports to system administrators by e-mail. Armed with this tool, administrators can proactively resolve password expiration issues for end-users and service accounts."
giltjrCommented:
O.K,  When they are logged on to the laptop are they logged on to a local account or the domain account?

I have a laptop and when my password expires and I am of the network the next time I connect to the network it gets updated automatically.  But I always logon with my domain account.

The only time I have seen what you are showing is if I happen to logon locally to the laptop and try to access a "domain controlled" resource (outlook/exchange, sharepoint, anything else that uses my domain credentials).
ChocolateRainAuthor Commented:
Giltjr: When they are logged onto their account it is a domain account.

Davis McCarn: Thanks for the script idea but that isn't really what I'm looking for.  If you need clarity on this issue please read my previous posts.

If there isn't a way to do this then I guess we'll have to live with it.
Davis McCarnOwnerCommented:
There is no way to solve the problem short of the Logoff/Logon or Lock/Unlock procedures so what I was suggesting was prevention.  Something that sends users an automatic e-mail the day before (or 2 days) their password expires ought to significantly reduce the number of incidents, shouldn't it?

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
ChocolateRainAuthor Commented:
The answer to this question is that there apparently is no answer.
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Active Directory

From novice to tech pro — start learning today.