Active Directory - Setting user to change password on next login does not allow user to reset password through Remote Desktop Clusters

We have an RD server multiple people remote into to work from. Recently, it was decided that everyone needs to be forced to change their password, as well as locking down the policy to force reset every 90 days. We didn't think there would be any issues, however the Remote Desktop sessions do not allow the users to change their passwords. It displays the information their password is expired and then gives them no option to change it. Is there a work around for this, or do we have to find another way?
LVL 2
OAC TechnologyProfessional NerdsAsked:
Who is Participating?
 
Cliff GaliherConnect With a Mentor Commented:
As Mahesh said, RDS does not allow for this. Clusters nor single servers would make a difference.  It is a limitation of the RDS protocol.

You *can* enable this feature on RDWA, but it is not on by default.  Doing so should only be done after carefully considering the security ramifications.  Are are third-party web-based self-service apps that can do this as well.  If you are syncing with AAD for office 365, you can even use Azure AD to do with AAD P1 plans, which allows password write-back.
0
 
MaheshConnect With a Mentor ArchitectCommented:
password can be reset with local login only

rss will not allow for that
0
 
MaheshArchitectCommented:
Thanks Cliff for making correction
Apologies for typo, happened as comment was typed on mobile phone

its RDS and not "RSS"
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.