Windows 7: Update Windows Password Cache after Password Change over the VPN

detox1978
detox1978 used Ask the Experts™
on
Hi All,

I would like to enforce password changes every 90 days.  However a couple of our users are home based, so are never on the LAN.

Our Juniper SSL VPN supports changing the password, however the Active Directory Integrated programs use the cached password.  Also, the user can only log on using the cached password.

How does everyone else manage this issue?

Many thanks
D
Comment
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
IT Director
Top Expert 2013
Commented:
Simple way to fix this is to do the following:

Log into the users system under your profile > Connect to the VPN > choose switch user (this will keep you logged in with the VPN connection up) > Have user login with their updated password to the domain.

A way to fix the situation is to (if your Juniper VPN allows it) to install a module that allows VPN connection to be established before sign-in.  On the login screen they would recieve a pop-up to connect to the VPN prior to login etc.

Author

Commented:
I would need the VPN to logon with my profile.  Would that work around work with a local user account?
Nick RhodeIT Director
Top Expert 2013

Commented:
Yes, as long as the vpn connection is established.  The switch user ability will keep everything active on that account until its signed out.
Commented:
They just need to be on the VPN and do a lock and unlock after changing their password.  The trick is they just need to know when their password is expiring and change it before the 90 days is up.  We do this via a product called Password Reminder Pro that sends out an e-mail to them at 10, 3 and 1 days.

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial