Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people, just like you, are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
Solved

How to force windows to forget passwords that are enterd by an admin in a logged in session of a user

Posted on 2010-11-17
8
424 Views
Last Modified: 2012-05-10
I had some times want to immediately forget passwords in domain user logged in session .Say I have a user called john and when he logged in a system he cant access a share of a windows file server due to the access restriction or a password protected method . He reported to the system administrator and he went there and enter the admin credentials and successfully connected to the file server without logging off John .But the admin want widows to forget the entered credential for the current user to prevent unwanted access.Is there any command to flush the cached logins?

Thanks,
Sumesh
0
Comment
Question by:sumeshbnr
  • 3
  • 2
  • 2
  • +1
8 Comments
 
LVL 6

Accepted Solution

by:
sconstable earned 500 total points
ID: 34161835
In the example above for windows 2003 the solution is fairly simple, you just make sure you have disconnected from the server as the admin user and it will revet back to the non-admin user.

By disconnect you need to do the following

Disconnect any mapped drives to the server that the admin users logged into for the user.
Right click on Network Neighborhood and right click and disconnect any open connections to servers.

Here is windows 2003 hint for providing temporary access:
Rather than logging on to the share as an admin user, Launch Internet Explorer using the runas command.  Then in the address par type in the UNC pathname (\\server\share).
Now when the admin user is done providing the assistance, closing internet explorer is all they will need to do and there i no possibility of the user having any leftover access.
0
 
LVL 16

Expert Comment

by:cantoris
ID: 34168171
If I go to a user's PC and connect to a server temporarily - eg  I type an UNC path into the Run box  eg  "\\server\share"
then once I'm done, I type
net use \\server\share /d     into a command prompt.
0
 
LVL 66

Expert Comment

by:johnb6767
ID: 34169167
Subscribing...
0
Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

 
LVL 66

Expert Comment

by:johnb6767
ID: 34170595
Also, stopping/restarting the Netlogon service should do the trick....
0
 
LVL 11

Author Comment

by:sumeshbnr
ID: 34368685
please give more comments
0
 
LVL 66

Expert Comment

by:johnb6767
ID: 34374955
Has none of these worked?
0
 
LVL 11

Author Comment

by:sumeshbnr
ID: 34618143
can any one help me
0
 
LVL 6

Expert Comment

by:sconstable
ID: 34620870
Can you please provide your results to the suggestions given and let us know what the current situation is, currently there are 2-3 suggestions above and you have not provided with a "this will not work because...." type of response.

Thanks.
0

Featured Post

Best Practices: Disaster Recovery Testing

Besides backup, any IT division should have a disaster recovery plan. You will find a few tips below relating to the development of such a plan and to what issues one should pay special attention in the course of backup planning.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

This article runs through the process of deploying a single EXE application selectively to a group of user.
This article describes my battle tested process for setting up delegation. I use this process anywhere that I need to setup delegation. In the article I will show how it applies to Active Directory
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…

809 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question