Solved

User password not updating from DC to Terminal Server

Posted on 2014-01-28
9
1,249 Views
Last Modified: 2014-04-30
I have a user that changed his AD password last week, but he is logging in to a Windows 2008 Terminal Server using his old password.  The DC is running on Windows 2012 Server.
How do I get the Terminal Server to update user credentials?
0
Comment
Question by:I812
  • 3
  • 2
  • 2
  • +1
9 Comments
 
LVL 74

Expert Comment

by:Jeffrey Kane - TechSoEasy
Comment Utility
This hotfix will most likely resolve the problem for you:
http://support.microsoft.com/kb/2845626

Jeff
TechSoEasy
0
 
LVL 21

Expert Comment

by:dan_blagut
Comment Utility
Hello

If this is happening your TS can't "see" a domain controller for some time.
log on on the TS and do ping %logonserver% to have the name of current controller, then check the network connectivity to this controller.
In a perfect network where you declared all IP subnets on AD your TS should talk with the controller in the same site.
Dan
0
 

Author Comment

by:I812
Comment Utility
pinged by logon, then by name
see below

ping %logonserver%
Ping request could not find host \\CYPRESS. Please check the name and try again.


ping cypress

Pinging cypress.pacaids.com [192.168.32.12] with 32 bytes of data:

Reply from 192.168.32.12: bytes=32 time<1ms TTL=128
Reply from 192.168.32.12: bytes=32 time<1ms TTL=128
Reply from 192.168.32.12: bytes=32 time<1ms TTL=128
Reply from 192.168.32.12: bytes=32 time<1ms TTL=128
0
 

Author Comment

by:I812
Comment Utility
I was mistaken on the Version of Windows Server
The terminal Server is Windows Server 2003 (not 2008, like I had reported)
The hotfix recommended by Jeffrey was for 2008
0
Integrate social media with email signatures

Is your company active on social media? Do you also use email signatures? Including social media icons in your email signature is a great way to get fans for free. Let all your email users know you’re on social media quickly and easily, in a single click.

 
LVL 21

Expert Comment

by:dan_blagut
Comment Utility
one site only?
you can try to deactivate the firewall on the 2012 server? (dont stop the service, this is take as attack)

Dan
0
 
LVL 74

Expert Comment

by:Jeffrey Kane - TechSoEasy
Comment Utility
The reason you didn't get a response from ping %logonsever% is due to the cached credentials not being in sync.

There should be errors in your event log which will provide information about what is causing the problem. Please review that to see..

Jeff
0
 
LVL 25

Accepted Solution

by:
Tony Giangreco earned 500 total points
Comment Utility
If your still having this problem, add the Domain Controller's IP and computer name to the host file on the terminal server.  Verify the user is changing his Windows login password and not a password for something else.

Also, verify the terminal server is logged into the domain and not logged in on a local account.
0
 
LVL 21

Expert Comment

by:dan_blagut
Comment Utility
Hello

If that's the correct solution you should check closely the DNS on the TS server / domain.

and maybe you will find more :(

Dan
0

Featured Post

Too many email signature changes to deal with?

Are you constantly being asked to update your organization's email signatures? Do they take up too much of your time? Wouldn't you love to be able to manage all signatures from one central location, easily design them and deploy them quickly to users. Well, you can!

Join & Write a Comment

The recent Microsoft changes on update philosophy for Windows pre-10 and their impact on existing WSUS implementations.
Possible fixes for Windows 7 and Windows Server 2008 updating problem. Solutions mentioned are from Microsoft themselves. I started a case with them from our Microsoft Silver Partner option to open a case and get direct support from Microsoft. If s…
This tutorial will walk an individual through the steps necessary to configure their installation of BackupExec 2012 to use network shared disk space. Verify that the path to the shared storage is valid and that data can be written to that location:…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…

728 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

10 Experts available now in Live!

Get 1:1 Help Now