Solved

Sync Outlook with AD password in NON_Exchange environment

Posted on 2010-11-22
6
459 Views
Last Modified: 2012-05-10
Is there a way to sync passwords between Active Directory and Outlook in a Non_Exchange environment?

What I am looking to do is have the password sync to Outlook from AD when the password policy expires and forces the user to change it. We don't want to users to have to change the password in 1.AD and 2.Outlook, but rather just in AD.

We are not using Exchange as the mail server. All ideas welcome.
0
Comment
Question by:mechanicus01
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 3
6 Comments
 
LVL 12

Expert Comment

by:Kent W
ID: 34194156
If your email package can sync or is compatable with LDAP (many email servers are), then you can.
How depends very largely on what email server you are using, if and how it is integrated with your network / AD.
Little more info = probably much more answer. :)
0
 
LVL 1

Author Comment

by:mechanicus01
ID: 34194201
If your email package can sync or is compatable with LDAP (many email servers are), then you can.
>> the email server is authenticates to AD , so how can i sync the passwords to Outlook?
0
 
LVL 1

Author Comment

by:mechanicus01
ID: 34194207
If your email package can sync or is compatable with LDAP (many email servers are), then you can.
>> the email server does authenticate to AD and is compatible with LDAP , so how can i sync the passwords to Outlook?
0
Has Powershell sent you back into the Stone Age?

If managing Active Directory using Windows Powershell® is making you feel like you stepped back in time, you are not alone.  For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why.

 
LVL 12

Expert Comment

by:Kent W
ID: 34194289
If the email server is synced with AD, then it *should* already be synced, as far as the user credentials to log in.  If your users log in IMAP / POP3, and the email server looks to LDAP, and that LDAP config is pointed at AD, then you should already be good to go, at least in respect to the server having the same credentials as AD.  What  I think your question really is asking - can Outlook pass the AD credentials the user is logged in with to the NON Exchange mail server, without having to enter credentials again, anywhere (either in a config page or via pop-up), in short, usually not. Exchange can integrate it's POP3 / IMAP service with AD seamlessly, but no other email server package that I know of is able to do this.
Since the actual credential are synced via LDAP, the "next best" is to have the users select "remember password" the first (or next) time they check mail.  They should not have to submit again until the AD pass is changed.  Upon AD password change, this will fail, obviously, and they will be prompted for a new password, which should, again, be saved at that time.  This would closely mimic the Outlook <AD> Exchange marriage.Not perfect, but probably as close as you are going to get.
If you can divulge the email server / service you are using, and definite answer could probably be given.
0
 
LVL 1

Author Comment

by:mechanicus01
ID: 34194334
What we are trying to avoid is having the users change their passwords in 2 places - in AD and in Outlook.

What we need is for the password to sync to Outlook when it is changed in AD. Is this possible?
0
 
LVL 12

Accepted Solution

by:
Kent W earned 500 total points
ID: 34194633
AFAIK, you can only do that with Exchange.  Outlook will save the password, though, and they wouldn't really have to change it, they would just be prompted by Outlook for a new password after an AD password change.  If your email server syncs with AD, the credentials will be synced, or that is, the same user / pass to check email as to logon to the AD domain.  The issue comes with Outlook set to check a non-Exchange POP3 / IMAP account.  In Outlook, you will configure it to pass the username anyway, which should never change.  You can have it "save" the password also, so in reality, they will have to put in the password once, when checking mail the first time, and once more each time their password changes.  That's as close as you are going to get, especially without knowing what actual email server you are using.
0

Featured Post

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In this step by step procedure, you will come to know the details of creating an Outlook meeting in 2007, 2010, 2013 & 2016.
How to resolve IMCEAEX NDRs in Exchange or Exchange Online related to invalid X500 addresses.
Get people started with the process of using Access VBA to control Outlook using automation, Microsoft Access can control other applications. An example is the ability to programmatically talk to Microsoft Outlook. Using automation, an Access applic…
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…

726 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question