?
Solved

Sync Outlook with AD password in NON_Exchange environment

Posted on 2010-11-22
6
Medium Priority
?
461 Views
Last Modified: 2012-05-10
Is there a way to sync passwords between Active Directory and Outlook in a Non_Exchange environment?

What I am looking to do is have the password sync to Outlook from AD when the password policy expires and forces the user to change it. We don't want to users to have to change the password in 1.AD and 2.Outlook, but rather just in AD.

We are not using Exchange as the mail server. All ideas welcome.
0
Comment
Question by:mechanicus01
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 3
6 Comments
 
LVL 12

Expert Comment

by:Kent W
ID: 34194156
If your email package can sync or is compatable with LDAP (many email servers are), then you can.
How depends very largely on what email server you are using, if and how it is integrated with your network / AD.
Little more info = probably much more answer. :)
0
 
LVL 1

Author Comment

by:mechanicus01
ID: 34194201
If your email package can sync or is compatable with LDAP (many email servers are), then you can.
>> the email server is authenticates to AD , so how can i sync the passwords to Outlook?
0
 
LVL 1

Author Comment

by:mechanicus01
ID: 34194207
If your email package can sync or is compatable with LDAP (many email servers are), then you can.
>> the email server does authenticate to AD and is compatible with LDAP , so how can i sync the passwords to Outlook?
0
What does it mean to be "Always On"?

Is your cloud always on? With an Always On cloud you won't have to worry about downtime for maintenance or software application code updates, ensuring that your bottom line isn't affected.

 
LVL 12

Expert Comment

by:Kent W
ID: 34194289
If the email server is synced with AD, then it *should* already be synced, as far as the user credentials to log in.  If your users log in IMAP / POP3, and the email server looks to LDAP, and that LDAP config is pointed at AD, then you should already be good to go, at least in respect to the server having the same credentials as AD.  What  I think your question really is asking - can Outlook pass the AD credentials the user is logged in with to the NON Exchange mail server, without having to enter credentials again, anywhere (either in a config page or via pop-up), in short, usually not. Exchange can integrate it's POP3 / IMAP service with AD seamlessly, but no other email server package that I know of is able to do this.
Since the actual credential are synced via LDAP, the "next best" is to have the users select "remember password" the first (or next) time they check mail.  They should not have to submit again until the AD pass is changed.  Upon AD password change, this will fail, obviously, and they will be prompted for a new password, which should, again, be saved at that time.  This would closely mimic the Outlook <AD> Exchange marriage.Not perfect, but probably as close as you are going to get.
If you can divulge the email server / service you are using, and definite answer could probably be given.
0
 
LVL 1

Author Comment

by:mechanicus01
ID: 34194334
What we are trying to avoid is having the users change their passwords in 2 places - in AD and in Outlook.

What we need is for the password to sync to Outlook when it is changed in AD. Is this possible?
0
 
LVL 12

Accepted Solution

by:
Kent W earned 2000 total points
ID: 34194633
AFAIK, you can only do that with Exchange.  Outlook will save the password, though, and they wouldn't really have to change it, they would just be prompted by Outlook for a new password after an AD password change.  If your email server syncs with AD, the credentials will be synced, or that is, the same user / pass to check email as to logon to the AD domain.  The issue comes with Outlook set to check a non-Exchange POP3 / IMAP account.  In Outlook, you will configure it to pass the username anyway, which should never change.  You can have it "save" the password also, so in reality, they will have to put in the password once, when checking mail the first time, and once more each time their password changes.  That's as close as you are going to get, especially without knowing what actual email server you are using.
0

Featured Post

Office 365 Training for IT Pros

Learn how to provision tenants, synchronize on-premise Active Directory, implement Single Sign-On, customize Office deployment, and protect your organization with eDiscovery and DLP policies.  Only from Platform Scholar.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If you troubleshoot Outlook for clients, you may want to know a bit more about the OST file before doing your next job. IMAP can cause a lot of drama if removed in the accounts without backing up.
In the absence of a fully-fledged GPO Management product like AGPM, the script in this article will provide you with a simple way to watch the domain (or a select OU) for GPOs changes and automatically take backups when policies are added, removed o…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…
This video shows how to remove a single email address from the Outlook 2010 Auto Suggestion memory. NOTE: For Outlook 2016 and 2013 perform the exact same steps. Open a new email: Click the New email button in Outlook. Start typing the address: …
Suggested Courses
Course of the Month15 days, 6 hours left to enroll

741 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question