Ransomware – malware that gets on your customers’ computers, encrypts their data, and extorts a hefty ransom for the decryption keys – is a surging new threat. The purpose of this eBook is to educate the reader about ransomware attacks.
COURSE of the MONTH
9 days, 7 hours left to enrollBecome a Premium Member and unlock a new, free course in leading technologies each month.
Solved
Active Directory users can access with the old password !!!!
Posted on 2012-12-31
Hello all,
We have many application and third party integrated with active directory but i face the following issue with all application also with Exchange 2010 SP2,
when i reset password for particular user he can access his account with the old password for 2-5 minutes only with integrated applications but domain logon works fine , is that a normal behavior, can we handle it , thanks all.
We have many application and third party integrated with active directory but i face the following issue with all application also with Exchange 2010 SP2,
when i reset password for particular user he can access his account with the old password for 2-5 minutes only with integrated applications but domain logon works fine , is that a normal behavior, can we handle it , thanks all.
[X]
Welcome to Experts Exchange
Add your voice to the tech community where 5M+ people just like you are talking about what matters.
- Help others & share knowledge
- Earn cash & points
- Learn & ask questions
-
2
- +1
5 Comments
If you have multiple domain controllers then it takes some time to replicate to other domain controllers. So the authentication might be happening from a Domain Controller before its replicated from the domain controller where the password change happened.
Regards,
Thomas
Regards,
Thomas
Dear thomasclm
i thought that then i shut down the additional domain controller but it's still later i discovered that it's a normal behavior from the A.D for 1 hour then it will expired, si still i need to reduce it as possible,
thanks .
i thought that then i shut down the additional domain controller but it's still later i discovered that it's a normal behavior from the A.D for 1 hour then it will expired, si still i need to reduce it as possible,
thanks .
Dear PeteLong
it's very helpful article but still i missing understand this key values :
On the Edit menu, click Add Value, and then add the following registry value:
Value Name: UserTokenTTL (Note This is case-sensitive!)
Data Type: REG_DWORD
Value Range: 0 - 0x7FFFFFFF (Note This unit is in seconds.)
how many seconds it will takes ?
also i need to make this with all integrated applications not Exchange only ,
it's very helpful article but still i missing understand this key values :
On the Edit menu, click Add Value, and then add the following registry value:
Value Name: UserTokenTTL (Note This is case-sensitive!)
Data Type: REG_DWORD
Value Range: 0 - 0x7FFFFFFF (Note This unit is in seconds.)
how many seconds it will takes ?
also i need to make this with all integrated applications not Exchange only ,
Is there any configuration where you can modify or configure how long password should be cached or do you have any apps which syncs the password,
if yes, how often...??
How is the replication configured or is there any issue with the replication between the DC's. The issue can be due to replication also.
You can disable the cache logon see this
http://technet.microsoft.com/en-us/library/cc755473(v=ws.10).aspx
Cached and Stored Credentials Technical Overview
http://technet.microsoft.com/en-us/library/hh994565(v=ws.10).aspx
http://support.microsoft.com/kb/913485?wa=wsignin1.0
if yes, how often...??
How is the replication configured or is there any issue with the replication between the DC's. The issue can be due to replication also.
You can disable the cache logon see this
http://technet.microsoft.com/en-us/library/cc755473(v=ws.10).aspx
Cached and Stored Credentials Technical Overview
http://technet.microsoft.com/en-us/library/hh994565(v=ws.10).aspx
http://support.microsoft.com/kb/913485?wa=wsignin1.0
Featured Post
Question has a verified solution.
If you are experiencing a similar issue, please ask a related question
Background Information
Recently I have fixed file server permission issues for one of my client. The client has 1800 users and one Windows Server 2008 R2 domain joined file server with 12 TB of data, 250+ shared folders and the folder structure i…
After seeing many questions for JRNL_WRAP_ERROR for replication failure, I thought it would be useful to write this article.
This tutorial will give a an overview on how to deploy remote agents in Backup Exec 2012 to new servers.
Click on the Backup Exec button in the upper left corner. From here, are global settings for the application such as connecting to a remote Back…
This tutorial will give a short introduction and overview of Backup Exec 2012 and how to navigate and perform basic functions.
Click on the Backup Exec button in the upper left corner. From here, are global settings for the application such as conne…
Suggested Courses
Course of the Month9 days, 7 hours left to enroll
762 members asked questions and received personalized solutions in the past 7 days.
Join the community of 500,000 technology professionals and ask your questions.