Re: Password problem .

From: Steven L Umbach (sumbach_at_nospam-ameritech.net)
Date: 01/26/04

• Next message: Steven L Umbach: "Re: NTFS"
• Previous message: serverguy: "Re: Taking ownership of files."
• In reply to: robbie: "Password problem ."
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Date: Mon, 26 Jan 2004 18:03:48 GMT

Check their account properites/account in AD to make sure that user can not
change password is not selected on these accounts. It could also be a
permision problem with AD object user access. Test to see if these users
have the problem on all machines or just certain ones since you inicate it
is not a problem for all users, that can help you isolate if it is a user or
machine problem. I would also run netdiag on the machines where this problem
is being experienced to make sure that proper communications exist to a
domain controller. Also see the KB link below about forcing kerberos to use
tcp which sometimes resolves this issue. --- Steve

http://support.microsoft.com/default.aspx?scid=kb;EN-US;258788
http://support.microsoft.com/default.aspx?scid=kb%3Ben-us%3B321708
http://support.microsoft.com/?kbid=244474

"robbie" <rbs_r@hotmail.com> wrote in message
news:3f8201c3e40f$131a7810$a101280a@phx.gbl...
> Basically, Some users only some can't change their
> passwords. We have a policy on the domain to change a
> password after certain time. When the user try changing
> their password when it experies. They get that they do
> not have permissions to change their passwords. I have
> checked the domain policy and I can't find anything that
> will stop them from changing it.checked that the security
> option for"additional restrictions for anonymous
> connections" is not set to no access without explicit
> anonymous permissions is not enable in the Local Security
> Policy on anydomain controller or in the Domain
> Controller Security Policy.
>
> We r using windows 200 server and windows XP clients
>
> Even I as an Domain Admin Can't change my password.
>
> This is driving me mad.
>
> Any ideas, please help Cheers Robbie.
>
>
> .
>
>

---

• Next message: Steven L Umbach: "Re: NTFS"
• Previous message: serverguy: "Re: Taking ownership of files."
• In reply to: robbie: "Password problem ."
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Relevant Pages Re: Policy from old domain applying to computers in new domain... ... To remove the old permissions (Which you won't easily ... You may be surprised how much security is ... using ADMT to a new domain would only receive policy from the new domain. ... future bothers me. ... (microsoft.public.windows.server.active_directory) Re: Security Policy Error ... the locked-down security that was originally set on the FRS through Group ... When you attempt to configure the FRS through Group Policy, ... > any service with misconfigured permissions, ... (microsoft.public.win2000.security) Re: Preventing browsing ... permissions are restrictive enough to prevent them from doing damage. ... ntfs permissions for the everyone group to read/list/execute. ... effective settings in Local Security Policy for those configurations. ... (microsoft.public.win2000.security) Re: Permissions assignment ? ... has permissions for everyone will allow ... If you do such you may need to modify the security ... Security Policy under security settings/local policies/security options ... > with a login prompt when they try to access the share. ... (microsoft.public.windows.server.security) Re: [RFC][PATCH] Privilege dropping security module ... dpriv.c contains the struct security_operations hooks for dpriv. ... You're masking file permissions. ... And stick with your namespace, ... * Parse policy lines one at a time. ... (Linux-Kernel)

---

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(15)