Solved

Delete Domain Cached Credentials When Not on a Domain

Posted on 2014-10-23
6
210 Views
Last Modified: 2014-10-28
Is there anyway to delete the credentials of a cached domain account? The computer in question is unable to connect to the domain.

The local administrative account can log on, however the VPN client does not allow for launch before startup.

To clarify: this computer has two accounts: The local admin (localadmin) and user (userjon). Userjon is a domain created account. It was created when the computer was attached to our domain in house. It has since been shipped out to the field. The user has forgotten their password, and when they attempted to connect to the domain to reset it, somehow all the wires got crossed. Now it will not take the domain password (we reset it here within AD), nor will it take any of the five previous passwords that the user thinks they may have used.

Is there a way to clear out the cached password on the userjon account?

Edited to add: Would this even help to log on with the userjon account or is this a lost cause?
0
Comment
Question by:KIP Help
  • 3
  • 2
6 Comments
 
LVL 14

Expert Comment

by:Geisrud
ID: 40400364
You can delete the cached credentials

To clear credentials:
Open the Local Security Policy on your computer (easiest way is from the Run box, type:  secpol.msc

From there, you want to navigate to:  Security Settings > Local Policies > Security Options.  Look for the policy, "Interactive logon: Number of previous logons to cache (in case domain controller is not available)"

Set this to "0 logons" to clear cached credentials.


That said, at that point, I don't see how your domain user would authenticate and log in, so I wouldn't do it.  You could try logging in as the local admin, then having your user log into VPN.  Then, once connected, accessing some resources where he would have to authenticate.  That should pull down and cache for you.
0
 
LVL 16

Accepted Solution

by:
Joshua Grantom earned 500 total points
ID: 40400366
Here is a work around I've used in the past.

1. Have them logon to the local admin account and start the VPN session
2. Once the VPN is connected, go to Switch User and have them login.
3. Once they are in their account, restart the computer.
4. Their new credentials should be stored locally.
0
 

Author Comment

by:KIP Help
ID: 40400373
Unfortunately, the option for Switch User is grayed out and inaccessible when logged in as the local administrator account.
0
Don't lose your head updating email signatures!

Do your end users still have the wrong email signature? Do email signature updates bore you or fill you with a sense of dread? You can make this a whole lot easier on yourself by trusting an Exclaimer email signature management solution. Over 50 million users do...so should you!

 
LVL 16

Assisted Solution

by:Joshua Grantom
Joshua Grantom earned 500 total points
ID: 40400399
logging into local administrator, you can change that by opening gpedit.msc and following this

http://helpdeskgeek.com/windows-7/windows-7-switch-user-disabled-or-greyed-out/

You may have to restart and then login as local admin again. Then you should be able to switch users above
0
 

Author Closing Comment

by:KIP Help
ID: 40408477
This resolved the problem. Once I was able to switch user, I was able to log on the user with VPN already connected.
0
 
LVL 16

Expert Comment

by:Joshua Grantom
ID: 40408480
Glad to help
0

Featured Post

Do email signature updates give you a headache?

Constantly trying to correctly format email signatures? Spending all of your time at every user’s desk to make updates? Want high-quality HTML signatures on all devices, including on mobiles and Macs? Then, let Exclaimer solve all your email signature problems today!

Join & Write a Comment

Storage devices are generally used to save the data or sometime transfer the data from one computer system to another system. However, sometimes user accidentally erased their important data from the Storage devices. Users have to know how data reco…
Possible fixes for Windows 7 and Windows Server 2008 updating problem. Solutions mentioned are from Microsoft themselves. I started a case with them from our Microsoft Silver Partner option to open a case and get direct support from Microsoft. If s…
This Micro Tutorial will teach you how to the overview of Microsoft Security Essentials. This is a free anti-virus software that guards your PC against viruses, spyware, worms, and other malicious software. This will be demonstrated using Windows…
The viewer will learn how to successfully create a multiboot device using the SARDU utility on Windows 7. Start the SARDU utility: Change the image directory to wherever you store your ISOs, this will prevent you from having 2 copies of an ISO wit…

705 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

15 Experts available now in Live!

Get 1:1 Help Now