Smart Device Password change when updating Windows password

We are a running Acrive sync with Windows 2008 R2 and Exchange 2010. We are implementing a group policy where users will need to update their passwords every 90 days. The users also carry one or more smart devices.

Does changing the password in Windows Server 2008 R2 have an effect on how folks continue to download their email on their personal devices (iPhone, iPad, Droid devices, etc.) . We were under the impression that a user would need to update their personal device every time their Windows password changes, but when we updated the Windows password and WITHOUT touching the personal devices, email continued to flow to the smart phones. Should we be worried or is this how it's designed to work?

Thank you
htamraz1Director of TechnologyAsked:
Who is Participating?
 
Simon Butler (Sembee)Connect With a Mentor ConsultantCommented:
I knew I had seen it officially.
http://support.microsoft.com/kb/2612821

Simon.
0
 
Mohammed KhawajaConnect With a Mentor Manager - Infrastructure:  Information TechnologyCommented:
it all depends.  Blackberry BES does not require user to change passwords and this maybe true for some other MDM devices.  ALSO NOTE THAT CHANGING PASSWORD MAY TAKE FEW MINUTES DEPENDING ON YOUR AD infrastructure.  if you are using phones/tablets connecting to Exchange without using MDM solution should prompt for password when polling for email.   this could become an issue and you should educate your users on how to change password on multiple devices.
0
 
htamraz1Director of TechnologyAuthor Commented:
Thank you
What is MDM?
0
Has Powershell sent you back into the Stone Age?

If managing Active Directory using Windows Powershell® is making you feel like you stepped back in time, you are not alone.  For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why.

 
Tony GiangrecoCommented:
If you change a user's password and they have an exchange account on that server or domain, then they need to update the password on their phones for email.
0
 
Mohammed KhawajaManager - Infrastructure:  Information TechnologyCommented:
MDM is Mobile Device Management software such as AirWatch, SAP Afaria or one from Citrix which allows centralized administration and policy management (ie users cannot install apps, apps deployment, etc)
0
 
htamraz1Director of TechnologyAuthor Commented:
TG-TIS
Is their an explanation for email continues to deliver to personal device despite changing the password in Windows, but not on the device?
0
 
Tony GiangrecoCommented:
Yes, they could have their business ail being forwarded to their personal email acct which is also on their phone.
0
 
Simon Butler (Sembee)Connect With a Mentor ConsultantCommented:
How long did you wait before coming to the conclusion that the password change wasn't required on the mobile device?
It is certainly true that the change isn't effective immediately. That is because ActiveSync works on a session basis and it is only when that session ends (which can be days) and then attempts to re-authenticate that the new password would be required. If you want instant requirement for the change then run IISRESET which ends all sessions and makes the clients reconnect.

Simon.
0
 
htamraz1Director of TechnologyAuthor Commented:
TG-TIS, forwarding is not the case.

Simon - your argument makes sense. Is this documented somewhere online?
0
 
Tony GiangrecoCommented:
From my experience, when you upgrade a password in Active Directory, that security change is immediate. there shouldn't be any waiting period unless your active directory is in terrible shape.
0
 
htamraz1Director of TechnologyAuthor Commented:
TG-TIS
That may be true, but did you see the comment by Simon in regard to activesync session issues and having to possibly run IISRESET. The change took effect immediately with our on-premise equipment. My question is specifically about why our mobile devices did not see the change right away.
0
 
htamraz1Director of TechnologyAuthor Commented:
Thank you. The last response with the support article really cleared this up.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.