This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(313.6, 10%, 40%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ED%3C/text%3E%3C/svg%3E)
Hello
We have recently put in place a password policy on our domain which requires regular changes of users passwords.
We have a Windows RDS Server 2012 R2 from which we publish our SAP program for remote users to use as we don't want them to use a VPN and connect directly in and use a complete user profile. This all works absolutely fine, however since putting in place the password policy it has created a problem. Namely when their passwords expire, they simply can't login, no message, warning or anything.
If I log in the "old fashioned" way by VPN and logging into the RDS server so that I have a user profile, then when the password is about to expire, I get the warning message saying there's so many days until your password expires click here to change it, whereby if I click on the message at the bottom of the screen I can change my password. However, with connecting to the published app I don't get any message/option to change password, it just expires and I can't log in. Is there any setting I can enable to allow this to happen, or has anyone found a workaround for this, or is it simply that it can't be done.
Any help gratefully received.
Thanks.
DGC
Hello DGC @DGC
Domain policy can apply over VPN connection, but not sure in other way.
If you have to use SAP , you can create password reset option in RD Web access :
Here’s how enabling the RD WebAccess Expired password reset option
Allow Users to Change Expired Password via Remote Desktop Web Access on Windows Server 2016/2012R2
----------
If the Answer is helpful, please click "Accept Answer" and upvote it.
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.
Best Regards
Karlie
Hello @DGC
Good day!
I'm just following up to make sure you received my last reply.
You can enable email notifications for a variety of different events in Microsoft Q&A:
https://learn.microsoft.com/en-us/answers/articles/67444/email-notifications.html
If you have any further questions or suggestions about this case, please let me know.
----------
If the Answer is helpful, please click "Accept Answer" and upvote it.
Best Regards
Karlie
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(281.6, 80%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ETB%3C/text%3E%3C/svg%3E)
Hi,
You can create a web site to let users change password because some clients don't offer the option to change the password and let user autonomous to manage the change of its password
Please don't forget to mark this reply as answer if it help you to fix tour issue
Hey @DGC
Is there any other domain policy set? Does them work after publishing SAP program?
Is the domain group policy set related to user profiles ?
Keep me posted how it goes.
Thank you and have a great day!
----------
If the Answer is helpful, please click "Accept Answer" and upvote it.
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.
Best Regards
Karlie
Hi Karlie
There are other policies in place, but the password policy is only set in one policy. They work fine on the published app, none of the other policies affect them, they are all for PC's on the local network.
I've just checked, the password policy is set in the 'Computer Configuration' section not the 'User Configuration' section. I've looked in the 'User Configuration' at 'security settings' and it contains a lot less options, the 'account policies' part doesn't exists. Is this the problem?
Thanks.
DGC
Hi Karlie
Apologies for the delay in responding, I've been on annual leave.
That worked perfectly.
Many thanks.
DGC