Computer Hope
Microsoft => Microsoft Windows => Windows Server => Topic started by: DaveLembke on May 29, 2008, 10:49:19 AM
-
This is weird and I was wondering if anyone might know what the cause of this is?
A users password was changed to a new password for the domain user account. The users were able to use the old domain password even though a new domain password was created at this site. For a period of time both the old and new passwords were allowing authentication to log onto this Windows XP Pro SP2 workstation.
We only have single domain controllers at each location, so there is no possibility that a redundant authenticator was present.
Our Domain Controllers at each site are running Windows Server 2003.
**** Did the workstation cache the authentication process for both new and old passwords to work or what may have caused this???
I did verify that the users were logging into the domain and not local domain workgroup against a local account. They were logging into the coop domain for our coop food store.
This workstation is clean of any malware/virus's as well....
??? ??? :-\
-
The short answer is the workstation did cache the old password. When you logged in with the new password the machine was forced to check the DC and see if the new password was right. When it was right it worked on the workstation.
You can stop this from happeneing with a domain security policy. Look for Interactive logon: Number of previous logons cached.