Link to home
Start Free TrialLog in
Avatar of Bahloul
BahloulFlag for Egypt

asked on

Active Directory users can access with the old password !!!!

Hello all,

We have many application and third party integrated with active directory but i face the following issue with all application also with Exchange 2010 SP2,

when i reset password for particular user he can access his account  with the old password for 2-5 minutes only  with integrated applications but domain logon works fine , is that a normal behavior, can we handle it , thanks all.
Avatar of thomasclm
thomasclm
If you have multiple domain controllers then it takes some time to replicate to other domain controllers.  So the authentication might be happening from a Domain Controller before its replicated from the domain controller where the password change happened.

Regards,
Thomas
Avatar of Pete Long
Pete Long
Flag of United Kingdom of Great Britain and Northern Ireland image
Avatar of Bahloul
Bahloul
Flag of Egypt image

ASKER

Dear  thomasclm

i thought that then i shut down the additional domain controller but it's still later i discovered that it's a normal behavior from the A.D for 1 hour then it will expired, si still i need to reduce it as possible,

thanks .
Avatar of Bahloul
Bahloul
Flag of Egypt image

ASKER

Dear PeteLong

it's very helpful article but still i missing understand this key values :

On the Edit menu, click Add Value, and then add the following registry value:
Value Name: UserTokenTTL (Note This is case-sensitive!)
Data Type: REG_DWORD
Value Range: 0 - 0x7FFFFFFF (Note This unit is in seconds.)

how many seconds it will takes ?

also i need to make this with all integrated applications not Exchange only ,
ASKER CERTIFIED SOLUTION
Avatar of palicos
palicos
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial