000029088 - User is able to login with old password after using Reset password feature on Active Directory

Document created by RSA Customer Support Employee on Jun 15, 2016Last modified by RSA Customer Support Employee on Apr 22, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000029088
Applies ToRSA IMG 6.8.1xx, 6.9xx
Active Directory on Windows 2003
IssueUser resets his password sucessfully but can login using the new and old password. 
CauseMicrosoft Windows Server 2003 Service Pack 1 (SP1) modifies NTLM network authentication behavior. After you install Windows Server 2003 SP1, domain users can use their old password to access the network for one hour after the password is changed.
Resolution

Go to the following link http://support2.microsoft.com/?id=906305 and follow steps "How to change the lifetime period of an old password."

Attachments

    Outcomes