RE: /sigh/ Latops in a domain...
- From: v-tomche@xxxxxxxxxxxxxxxxxxxx (Tom Che [MSFT])
- Date: Thu, 30 Jun 2005 12:12:05 GMT
Hi Gabe,
Thanks for posting here.
>From your post, my understanding of this issue is: The laptop users cannot
access the file share via VPN due to their password expiration. If this is
not correct, please feel free to let me know.
This issue seems to be related to Active Directory, so I would suggest
posting in the newsgroup below:
microsoft.public.windows.server.active_directory
This is a more appropriate forum for your question where you will get the
most qualified pool of respondents and other partners in the newsgroups who
can either share their knowledge or learn from your interaction with us.
Thank you for your understanding.
However, I think there may be a simply way to resolve this issue:
You may add all laptop users to a Group in AD, and then apply a security
policy similar with "Password never expires" on this Group.
This is just an idea, for more detailed about this, please post in above
newsgroup. I believe you will get perfect solution there.
Have a nice day!
Sincerely,
Tom Che
Microsoft Online Partner Support
Get Secure! - www.microsoft.com/security
=====================================================
When responding to posts, please "Reply to Group" via your newsreader so
that others may learn and benefit from your issue.
=====================================================
This posting is provided "AS IS" with no warranties, and confers no rights.
--------------------
>From: "Gabe Knuth" <gknuth@xxxxxxxxxxxxxx>
>Subject: /sigh/ Latops in a domain...
>Date: Wed, 29 Jun 2005 16:05:52 -0500
>Lines: 31
>X-Priority: 3
>X-MSMail-Priority: Normal
>X-Newsreader: Microsoft Outlook Express 6.00.2900.2180
>X-RFC2646: Format=Flowed; Original
>X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.2180
>Message-ID: <ecg515OfFHA.3256@xxxxxxxxxxxxxxxxxxxx>
>Newsgroups: microsoft.public.windowsxp.configuration_manage
>NNTP-Posting-Host: 65.247.121.5
>Path:
TK2MSFTNGXA01.phx.gbl!TK2MSFTNGXA03.phx.gbl!TK2MSFTNGP08.phx.gbl!TK2MSFTNGP1
2.phx.gbl
>Xref: TK2MSFTNGXA01.phx.gbl
microsoft.public.windowsxp.configuration_manage:12847
>X-Tomcat-NG: microsoft.public.windowsxp.configuration_manage
>
>This old battle again...
>
>We've got an AD (previously used only Netware for the PC's) with 1200 or
so
>users in it. About 100 of those are laptop users that are rarely in the
>office.
>
>In the past, the users would log on to their local machine, connect via
>Contivity VPN, then authenticate to a Windows file share in a domain that
>pretty much only servers were in by using their domain credentials. Their
>passwords were set to never expire and were synched manually with their
>Novell and local machine passwords.
>
>Now we're adding them to AD. We've got a corporate SOX policy in place,
so
>each user is required to change their password afte x-number of days.
>Problem is, these users don't connect to the network with their laptops
>before their password expires. That works OK for the local machine, it'll
>just cache it until they plug in again, but if they log on with their
cached
>password (after connecting to the VPN), they won't be able to connect to
the
>file share.
>
>What's everyone else doing in situations like this? I've been trying to
>find a way to have their dial-up client and their VPN client launch before
>the logon to the box. That should fix this. It seems to me there is a
>simpler way, and I'm just mucking it up and over thinking it.
>
>Any thoughts are appreciated.
>
>Thanks,
>Gabe
>
>
>
.
- Follow-Ups:
- Re: /sigh/ Latops in a domain...
- From: Gabe Knuth
- Re: /sigh/ Latops in a domain...
- References:
- /sigh/ Latops in a domain...
- From: Gabe Knuth
- /sigh/ Latops in a domain...
- Prev by Date: Re: Virtual memory problems
- Next by Date: Serial Ports
- Previous by thread: /sigh/ Latops in a domain...
- Next by thread: Re: /sigh/ Latops in a domain...
- Index(es):
Relevant Pages
|
Loading
