This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

AD password reset not replicating to PC

I have had an issue where a user has reset his AD password and when the laptop was restarted the Safeguard account locked out and had to be unlocked with the Challenge code. Is there a method or way to avoid this happening again. 

 

Many thanks



This thread was automatically locked due to age.
  • You must not reset a password in AD. There is no password replication from AD to the PC. A password change has always to be done on the client.

    Never to an AD password reset. An AD password reset breaks the password sync between Windows and Safeguard, because the client doesn't "know" about the password change.

    When a user forgets his password, perform a Challenge/Response procedure with "Show password" option.

     

    Regards,

     

    Holger

  • Ah ok, many thanks Holger, We'll have to pass this out to our users who have this on their systems for the future. Just to be clear, they need to change the password in Sophos SafeGuard as well as the AD password, ideally doing the SafeGuard one first?

    This case, the user logged on to the system, as his AD password was about to expire he changed that password, all was fine until he had to restart the laptop, at this stage he couldn't start the system as the password was not accepted (old or new).