Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

Security Policy Problem changing user password SBS 2008?

Posted on 2013-11-15
7
Medium Priority
?
280 Views
Last Modified: 2014-01-07
Since changing a standard users password he has be unable to get past his local Win7 login screen.

We tried a reboot of his PC and since doing so it is now asking for a 'pin' password or his 'normal' password. The usual password field won't accept his new one. The mention of pin has only appeared since we changed his pass, loggin on as admin at this tage works fine so it's just his account that has the problem, whatever it is.

I changed it back to his previous pass, rebooted and he can now login so we have a workaround, just wondered if anyone has come across this before or has any suggestions?
0
Comment
Question by:MadPC
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
  • 2
  • +1
7 Comments
 
LVL 7

Assisted Solution

by:mbkitmgr
mbkitmgr earned 664 total points
ID: 39653071
I am assuming the PC is a member of the SBS domain.

It sounds like a corrupt profile
0
 
LVL 53

Assisted Solution

by:Will Szymkowski
Will Szymkowski earned 668 total points
ID: 39653321
Have you looked in the event viewer for errors? It is possible that this machine has lost its
trust with the domain. Have you tried to remove the PC from the domain and re-add it?

Also what policies are being applied to this machine? Use rsop.msc (when logged in as the user) to see what computer and user polciies are being applied.

Will.
0
 
LVL 56

Expert Comment

by:McKnife
ID: 39655187
A PIN?
Clearly, this is 3rd party software, not windows.
Find out what software on that box serves authentication purposes and uninstall it for a test.
0
Ransomware: The New Cyber Threat & How to Stop It

This infographic explains ransomware, type of malware that blocks access to your files or your systems and holds them hostage until a ransom is paid. It also examines the different types of ransomware and explains what you can do to thwart this sinister online threat.  

 
LVL 1

Author Comment

by:MadPC
ID: 39745702
User is on an SBS 2008 domain, yes. I changed the users password back to previous and he is able to login again - The Pin number is definitely part of windows...

http://tweaks.com/windows/52363/logon-with-a-pin-instead-of-a-password/

If I change his password to a new one we get the same issue, right now we have a workaround but any other suggestions welcome
0
 
LVL 7

Expert Comment

by:mbkitmgr
ID: 39745878
Is the pc a hp. A client mines pc had a hp password utility that was fine for a standalone setup but not a domain joined machine.   It only appeared when the machine configuration was changed.   I tried to work with it but could see it confusing the Users.  I removed the machine from the domain, uninstalled it.
0
 
LVL 56

Accepted Solution

by:
McKnife earned 668 total points
ID: 39748072
Sorry, I did not know about the PIN feature. It should not be allowed on domain environments by default, I suppose, because it's very secure.
Please try to rechange the pw and see. Maybe the communication with the DC or the replication amongst DCs is the problem.
0
 
LVL 1

Author Closing Comment

by:MadPC
ID: 39761562
Removed PC from the domain and reattached it, all seems to be well
0

Featured Post

NEW Veeam Agent for Microsoft Windows

Backup and recover physical and cloud-based servers and workstations, as well as endpoint devices that belong to remote users. Avoid downtime and data loss quickly and easily for Windows-based physical or public cloud-based workloads!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In this article, we’ll look at how to deploy ProxySQL.
Will you be ready when the clock on GDPR compliance runs out? Is GDPR even something you need to worry about? Find out more about the upcoming regulation changes and download our comprehensive GDPR checklist today !
Attackers love to prey on accounts that have privileges. Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …
There are cases when e.g. an IT administrator wants to have full access and view into selected mailboxes on Exchange server, directly from his own email account in Outlook or Outlook Web Access. This proves useful when for example administrator want…

705 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question