Solved

Delete Domain Cached Credentials When Not on a Domain

Posted on 2014-10-23
6
220 Views
Last Modified: 2014-10-28
Is there anyway to delete the credentials of a cached domain account? The computer in question is unable to connect to the domain.

The local administrative account can log on, however the VPN client does not allow for launch before startup.

To clarify: this computer has two accounts: The local admin (localadmin) and user (userjon). Userjon is a domain created account. It was created when the computer was attached to our domain in house. It has since been shipped out to the field. The user has forgotten their password, and when they attempted to connect to the domain to reset it, somehow all the wires got crossed. Now it will not take the domain password (we reset it here within AD), nor will it take any of the five previous passwords that the user thinks they may have used.

Is there a way to clear out the cached password on the userjon account?

Edited to add: Would this even help to log on with the userjon account or is this a lost cause?
0
Comment
Question by:KIP Help
  • 3
  • 2
6 Comments
 
LVL 14

Expert Comment

by:Geisrud
ID: 40400364
You can delete the cached credentials

To clear credentials:
Open the Local Security Policy on your computer (easiest way is from the Run box, type:  secpol.msc

From there, you want to navigate to:  Security Settings > Local Policies > Security Options.  Look for the policy, "Interactive logon: Number of previous logons to cache (in case domain controller is not available)"

Set this to "0 logons" to clear cached credentials.


That said, at that point, I don't see how your domain user would authenticate and log in, so I wouldn't do it.  You could try logging in as the local admin, then having your user log into VPN.  Then, once connected, accessing some resources where he would have to authenticate.  That should pull down and cache for you.
0
 
LVL 16

Accepted Solution

by:
Joshua Grantom earned 500 total points
ID: 40400366
Here is a work around I've used in the past.

1. Have them logon to the local admin account and start the VPN session
2. Once the VPN is connected, go to Switch User and have them login.
3. Once they are in their account, restart the computer.
4. Their new credentials should be stored locally.
0
 

Author Comment

by:KIP Help
ID: 40400373
Unfortunately, the option for Switch User is grayed out and inaccessible when logged in as the local administrator account.
0
Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

 
LVL 16

Assisted Solution

by:Joshua Grantom
Joshua Grantom earned 500 total points
ID: 40400399
logging into local administrator, you can change that by opening gpedit.msc and following this

http://helpdeskgeek.com/windows-7/windows-7-switch-user-disabled-or-greyed-out/

You may have to restart and then login as local admin again. Then you should be able to switch users above
0
 

Author Closing Comment

by:KIP Help
ID: 40408477
This resolved the problem. Once I was able to switch user, I was able to log on the user with VPN already connected.
0
 
LVL 16

Expert Comment

by:Joshua Grantom
ID: 40408480
Glad to help
0

Featured Post

Simplifying Server Workload Migrations

This use case outlines the migration challenges that organizations face and how the Acronis AnyData Engine supports physical-to-physical (P2P), physical-to-virtual (P2V), virtual to physical (V2P), and cross-virtual (V2V) migration scenarios to address these challenges.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

OfficeMate Freezes on login or does not load after login credentials are input.
By default the complete memory dump option is disabled in windows . If we want to enable the complete memory dump for a diagnostic purpose, we have a solution for it. here we are using the registry method to enable this.
In this Micro Tutorial viewers will learn how to use Boot Corrector from Paragon Rescue Kit Free to identify and fix the boot problems of Windows 7/8/2012R2 etc. As an example is used Windows 2012R2 which lost its active partition flag (often happen…
The Task Scheduler is a powerful tool that is built into Windows. It allows you to schedule tasks (actions) on a recurring basis, such as hourly, daily, weekly, monthly, at log on, at startup, on idle, etc. This video Micro Tutorial is a brief intro…

831 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question