User must change password at first log on issue
Hi Experts, I have been facing an strange and weird problem. It goes like this way I've Windows 2008 domain and with a single exchange server 2007 installed on Windows Server 2003. I was in the processing of implementing an "User must change password at first log on" attribute. Therefore in this context I upgraded to SP3. Here my problem is I created a test user and e-mail with an option "User must change password at first logon" checked and password was kept empty. I was able to successfully update at first logon. Till this time everything was in favour. However, when I changed the password from Active Directory and keep checked the option Users Must change...then I went to browser to access my owa. But what I discovered that I can still login with old password. Please any help would be highly appreciated.
April 28th, 2012 10:01am

On Sat, 28 Apr 2012 13:51:14 +0000, Samir Shaikh wrote: >I have been facing an strange and weird problem. It goes like this way I've Windows 2008 domain and with a single exchange server 2007 installed on Windows Server 2003. I was in the processing of implementing an "User must change password at first log on" attribute. Therefore in this context I upgraded to SP3. > >Here my problem is > >I created a test user and e-mail with an option "User must change password at first logon" checked and password was kept empty. I was able to successfully update at first logon. Till this time everything was in favour. However, when I changed the password from Active Directory and keep checked the option Users Must change...then I went to browser to access my owa. But what I discovered that I can still login with old password. > >Please any help would be highly appreciated. IIS caches the credentials for some period of time (15 minutes, IIRC). After the time elapses the cache will be refreshed and the old credentials forgotten. http://support.microsoft.com/kb/267568 --- Rich Matheisen MCSE+I, Exchange MVP --- Rich Matheisen MCSE+I, Exchange MVP
Free Windows Admin Tool Kit Click here and download it now
April 28th, 2012 1:14pm

Thanks Rich I really appreciate It's working like a charm..Thanks you very much once again. Samir
April 29th, 2012 1:45am

Hi Rich, I've the last query to ask. Why is it necessary to provide the domain name while changing the password through IIS-Authentication Manager. Why isn't accept the password by just giving the user ID. Please see the attached Please can help me to clarify this. Much appreciated. Thanks
Free Windows Admin Tool Kit Click here and download it now
April 30th, 2012 10:48am

On Sun, 29 Apr 2012 14:20:07 +0000, Samir Shaikh wrote: > > >Hi Rich, > >I've the last query to ask. Why is it necessary to provide the domain name while changing the password through IIS-Authentication Manager. Why isn't accept the password by just giving the user ID. > >Please see the attached > > > >Please can help me to clarify this. Much appreciated. The code doesn't know (or care) if you have more than one AD domain in your AD forest. Further, the user-id in a domain is always "domain\samaccountname", In other words, you can't log in using ony your samaccountname in an AD domain. Some software may make it _look_ like you can, but it's probably been set up to use some domain name as a default on to supply if the domain's not provided. You should be able to change the code behind that web page to do that, too. --- Rich Matheisen MCSE+I, Exchange MVP --- Rich Matheisen MCSE+I, Exchange MVP
April 30th, 2012 2:14pm

Hi Rich, Thanks for your reponse. There is no way to exclude the domain. Actually my user in the organization logon to their mailbox by providing only user-id. Now when I will activate passoword expiration policy they have to change there password from the above screen. For the sake of easy I want them to provide only user-id as well in Authentication Manager Samir
Free Windows Admin Tool Kit Click here and download it now
April 30th, 2012 2:46pm

On Sun, 29 Apr 2012 18:17:50 +0000, Samir Shaikh wrote: >Thanks for your reponse. There is no way to exclude the domain. Actually my user in the organization logon to their mailbox by providing only user-id. Now when I will activate passoword expiration policy they have to change there password from the above screen. For the sake of easy I want them to provide only user-id as well in Authentication Manager Did the software come with instructions? Do thay say it's possible to do what you want? If not then you need to either find different software or modify the code for the software you have. In either case, this isn't an Exchange problem. --- Rich Matheisen MCSE+I, Exchange MVP --- Rich Matheisen MCSE+I, Exchange MVP
April 30th, 2012 4:22pm

Actually I am not using any third party software. Its all about IIS integrated with Exchange. There isn't any way to configure IIS.
Free Windows Admin Tool Kit Click here and download it now
April 30th, 2012 5:27pm

On Sun, 29 Apr 2012 20:58:42 +0000, Samir Shaikh wrote: >Actually I am not using any third party software. Its all about IIS integrated with Exchange. There isn't any way to configure IIS. You have the code for that. If you want to change it you can. It's till not an Exchange problem, though. What you have is working "as designed". --- Rich Matheisen MCSE+I, Exchange MVP --- Rich Matheisen MCSE+I, Exchange MVP
April 30th, 2012 5:50pm

Hi Rich, I've got the solution I would like to share with you Thanks for your help and support. Much Appreciated.
Free Windows Admin Tool Kit Click here and download it now
May 1st, 2012 12:30am

Hello, Thank you for sharing the solution with us. Thanks, Simon
May 4th, 2012 3:31am

This topic is archived. No further replies will be accepted.

Other recent topics Other recent topics