Hi everyone!
We have an old problem that today, in the pandemic, has surfaced again. How do I get domain users to change their passwords through VPN? Is it possible to use Network Policy Server (RADIUS) to reach that?
Hope I was clear enough.
How to change domains users passwords through VPN?
Let me explain a little more.
Users closes the VPN from workstations OUTSIDE the domain. Once connected, how can they change their user domain password? That's the issue.
Thanks.
Hi ,
Based on my understanding, you want to allow VPN client (domain user) to change their password themselves when password expired. Is that right? Please feel free to let me know if my understanding is wrong.
Did you want to achieve the following goal?When password has expired, VPN clients can change their password by themselves.(I used windows build-in VPN client to do the test, we have no third-party VPN client in our lab to do the test.)
If yes, just check Allow client to change password after it has expired in EAP MSCHAPV2 Properties from NPS network policy. Then we can change password by ourselves when password expired.
If we did not check this option, then after password expired we cannot connect to VPN. As the picture below:
Hope this can help you.
--Please Accept as answer if the reply is helpful--
Best Regards,
Candy
Are you saying password expires while not connected? In that case maybe they can use outlook web access to change it.
No, no, they want to be able to change their passwords from stations that do not belong to the domain, working in Home Office connected by VPN.
We don't work with Exchange.
Do you have RDS/RDWEB? You can have them change passwords via RDWEB link like this: https://RDWebServer01/rdweb/Pages/en-US/password.aspx
*While only connected to VPN
What do you use for VPN? With Cisco AnyConnect, it's best to login with cached credentials and connect to VPN. Then hit Ctrl-Alt-Del and reset the password. Next step, would be to lock the computer and unlock with new password. Do not log off and kill VPN connection
If you need to alert users of their passwords expiring (before a helpdesk ticket is needed), check out this script:
Hello Seth,
I am looking to alert my users to get on the VPN before changing their password. Can this script help me?
I try to click on t he link but I didnt see any thing as close as what I wanted.
Could you help me please?
Might want to increase the expiry warning to a higher number of days.
--please don't forget to Accept as answer if the reply is helpful--
We work with SonicWall Global VPN Client.
Let´s take me, for example: I am working on Home Office too. Even connected to my domain account via VPN, if I use Ctrl + Alt + Del, Windows 10 offers to change the password of my local user (remember that the workstation is not part of the domain), not my domain user.
I figured that NPS (RADIUS) server could solve this.
Regards.
Try;
- Click Start.
- Type osk.
- Hit enter.
- Once the On screen Keyboard is open, hold ctrl+Alt on your physical keyboard, then click on the DEL key in the on screen keyboard.
- Minimize the on screen Keyboard.
- Click Change a password.
- Close osk.
--please don't forget to Accept as answer if the reply is helpful--
What problem are you having? What are you missing?
From run box type osk then ENTER (starts the on screen keyboard)
Once the on screen keyboard is open, hold ctrl+ Alt on your laptop keyboard, then use mouse to click on the DEL key in the on screen keyboard.
Minimize the on screen keyboard (to get it out of the way)
Click Change password, and done
--please don't forget to Accept as answer if the reply is helpful--
5 people are following this question.
