Solved

User password not updating from DC to Terminal Server

Posted on 2014-01-28
9
1,295 Views
Last Modified: 2014-04-30
I have a user that changed his AD password last week, but he is logging in to a Windows 2008 Terminal Server using his old password.  The DC is running on Windows 2012 Server.
How do I get the Terminal Server to update user credentials?
0
Comment
Question by:I812
  • 3
  • 2
  • 2
  • +1
9 Comments
 
LVL 74

Expert Comment

by:Jeffrey Kane - TechSoEasy
ID: 39817008
This hotfix will most likely resolve the problem for you:
http://support.microsoft.com/kb/2845626

Jeff
TechSoEasy
0
 
LVL 21

Expert Comment

by:dan_blagut
ID: 39817009
Hello

If this is happening your TS can't "see" a domain controller for some time.
log on on the TS and do ping %logonserver% to have the name of current controller, then check the network connectivity to this controller.
In a perfect network where you declared all IP subnets on AD your TS should talk with the controller in the same site.
Dan
0
 

Author Comment

by:I812
ID: 39818286
pinged by logon, then by name
see below

ping %logonserver%
Ping request could not find host \\CYPRESS. Please check the name and try again.


ping cypress

Pinging cypress.pacaids.com [192.168.32.12] with 32 bytes of data:

Reply from 192.168.32.12: bytes=32 time<1ms TTL=128
Reply from 192.168.32.12: bytes=32 time<1ms TTL=128
Reply from 192.168.32.12: bytes=32 time<1ms TTL=128
Reply from 192.168.32.12: bytes=32 time<1ms TTL=128
0
Efficient way to get backups off site to Azure

This user guide provides instructions on how to deploy and configure both a StoneFly Scale Out NAS Enterprise Cloud Drive virtual machine and Veeam Cloud Connect in the Microsoft Azure Cloud.

 

Author Comment

by:I812
ID: 39818299
I was mistaken on the Version of Windows Server
The terminal Server is Windows Server 2003 (not 2008, like I had reported)
The hotfix recommended by Jeffrey was for 2008
0
 
LVL 21

Expert Comment

by:dan_blagut
ID: 39818323
one site only?
you can try to deactivate the firewall on the 2012 server? (dont stop the service, this is take as attack)

Dan
0
 
LVL 74

Expert Comment

by:Jeffrey Kane - TechSoEasy
ID: 39819928
The reason you didn't get a response from ping %logonsever% is due to the cached credentials not being in sync.

There should be errors in your event log which will provide information about what is causing the problem. Please review that to see..

Jeff
0
 
LVL 25

Accepted Solution

by:
Tony Giangreco earned 500 total points
ID: 39948729
If your still having this problem, add the Domain Controller's IP and computer name to the host file on the terminal server.  Verify the user is changing his Windows login password and not a password for something else.

Also, verify the terminal server is logged into the domain and not logged in on a local account.
0
 
LVL 21

Expert Comment

by:dan_blagut
ID: 40033318
Hello

If that's the correct solution you should check closely the DNS on the TS server / domain.

and maybe you will find more :(

Dan
0

Featured Post

Best Practices: Disaster Recovery Testing

Besides backup, any IT division should have a disaster recovery plan. You will find a few tips below relating to the development of such a plan and to what issues one should pay special attention in the course of backup planning.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Restoring deleted objects in Active Directory has been a standard feature in Active Directory for many years, yet some admins may not know what is available.
While rebooting windows server 2003 server , it's showing "active directory rebuilding indices please wait" at startup. It took a little while for this process to complete and once we logged on not all the services were started so another reboot is …
This tutorial will walk an individual through the process of configuring basic necessities in order to use the 2010 version of Data Protection Manager. These include storage, agents, and protection jobs. Launch Data Protection Manager from the deskt…
This tutorial will walk an individual through the process of installing of Data Protection Manager on a server running Windows Server 2012 R2, including the prerequisites. Microsoft .Net 3.5 is required. To install this feature, go to Server Manager…

808 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question