none
remote user changed the domain password while vpn but the laptop is still cached with the old password RRS feed

  • Question

  • We have a remote user using windows 7 pro 32 bit and  cisco vpn 5.0.07.0410 on his laptop.

    The remote user is prompted to change his password while he is connected to the domain during the vpn session.  He follows the prompts to the change the password.

    When he performs the following Ctlr+Alt+Del, selects lock, and now tries to unlocks the laptop with the new password he  receives the message of  “The trust relationship  between this workstation and the primary domain failed”

    In order to get into the laptop   the remote user restarts the laptop and uses the old password with his domain username.

    Even though he is vpn into the network  the remote user  is unable to gain access to any network resources since domain password was changed.

    VPN password and domain password are different.  The Cisco VPN username/password account is keep on the ASA.  The domain username/password is keep on a Microsoft server. 

    Does anybody know how to get the changed domain password onto the laptop while VPN?

    Thank YOU!

    Thursday, April 14, 2016 10:47 PM

Answers

All replies

  • Could be a sync issue with AD. 

    Arnav Sharma | http://arnavsharma.net/ Please remember to click “Mark as Answer” on the post that helps you, and to click “Unmark as Answer” if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread.

    Friday, April 15, 2016 2:50 AM
    Moderator
  • Hi rp613rp,

     

    Based on your description, we may try to remote users who need to synch their laptop's locally cached password with their AD password. Please follow the steps below:

     

    1.) Log on to the laptop with the OLD password.

    2.) VPN into the corporate network, using the NEW password.

    3.) Lock the laptop with CTRL+ALT+DEL.

    4.) Unlock the laptop using the NEW password. After unlocking the laptop

     

    Using the new password, it will cache the new password.

     

    Best Regards,

    Tao

     


    Please remember to mark the replies as answers if they help, and unmark the answers if they provide no help. If you have feedback for TechNet Support, contact tnmff@microsoft.com.

    Saturday, April 16, 2016 9:08 AM
    Moderator
  • Hi Tao,

    Thanks for the information but we tried that already with no luck.

    Thanks,

    rp613rp

    Tuesday, April 19, 2016 10:08 PM
  • Sounds like cached credentials. It is possible to disable them but this would impact your end users as they have laptops. Please refer to the link:

    http://www.itworld.com/article/2779749/windows/how-to-disable-credential-caching-on-client-computers.html

    Please Note: Since the websites are not hosted by Microsoft, the links may change without notice. Microsoft does not guarantee the accuracy of this information.

    Remove stored passwords, certificates, and other credentials:

    http://windows.microsoft.com/en-SG/windows7/remove-stored-passwords-certificates-and-other-credentials


    Please remember to mark the replies as answers if they help, and unmark the answers if they provide no help. If you have feedback for TechNet Support, contact tnmff@microsoft.com.


    Wednesday, April 20, 2016 6:35 AM
    Moderator