whitesocks

Absent Member.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report Inappropriate Content
2019-03-13
12:09
475 views
AD user can't modify password by client PC
Hi
I use AD driver, I can change password on the domain control server, But the AD user modify password by client PC, the AD driver can't get any modify or change password response.
Other info:
I have six AD server,I can't install pwfilter.dll on two servers.
One report:Can't copy file(67)
One report:Read register err(53)
Please support.
I use AD driver, I can change password on the domain control server, But the AD user modify password by client PC, the AD driver can't get any modify or change password response.
Other info:
I have six AD server,I can't install pwfilter.dll on two servers.
One report:Can't copy file(67)
One report:Read register err(53)
Please support.
4 Replies


Knowledge Partner
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report Inappropriate Content
2019-03-13
13:29
First of all you need to install the pwd filter on all domain servers.
The issue you have is because netbios and /or remote editing of registry is not allowed.
You can install the filter manually on that server. There should be a section about that in the documentation. It is surely in a few older posts as well.
The issue you have is because netbios and /or remote editing of registry is not allowed.
You can install the filter manually on that server. There should be a section about that in the documentation. It is surely in a few older posts as well.


Knowledge Partner
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report Inappropriate Content
2019-03-13
14:18
On 3/13/2019 9:34 AM, joakim ganse wrote:
>
> First of all you need to install the pwd filter on all domain servers.
>
> The issue you have is because netbios and /or remote editing of registry
> is not allowed.
>
> You can install the filter manually on that server. There should be a
> section about that in the documentation. It is surely in a few older
> posts as well.
Lothar published a cool solution with a Windows INF file to do the Reg
and file copies as well a while back.
>
> First of all you need to install the pwd filter on all domain servers.
>
> The issue you have is because netbios and /or remote editing of registry
> is not allowed.
>
> You can install the filter manually on that server. There should be a
> section about that in the documentation. It is surely in a few older
> posts as well.
Lothar published a cool solution with a Windows INF file to do the Reg
and file copies as well a while back.
whitesocks

Absent Member.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report Inappropriate Content
2019-03-14
09:18
Hi
I have installed the pwd filter on other server, the server filter is running.but still can't sync password
I have installed the pwd filter on other server, the server filter is running.but still can't sync password


Knowledge Partner
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report Inappropriate Content
2019-03-14
13:24
Me to a dozen years ago:
https://www.novell.com/coolsolutions/tools/19558.html
As joakim mentioned, ALL DCs need these, else you will likely lose
password change events.
Get a level five (5) trace from the driver (shim), which is probably
running in a Remote Loader (RL), and post the output here at the time of
the password change. You should see some activity right then, but
otherwise your password filter is either not configured correctly or the
network is blocking traffic from the DC that received the password change
to the RL box.
Another method for testing is to change the password from each DC itself
for the same test user. See which DCs do not cause a password change
event and then focus on those.
--
Good luck.
If you find this post helpful and are logged into the web interface,
show your appreciation and click on the star below.
If you want to send me a private message, please let me know in the
forum as I do not use the web interface often.
https://www.novell.com/coolsolutions/tools/19558.html
As joakim mentioned, ALL DCs need these, else you will likely lose
password change events.
Get a level five (5) trace from the driver (shim), which is probably
running in a Remote Loader (RL), and post the output here at the time of
the password change. You should see some activity right then, but
otherwise your password filter is either not configured correctly or the
network is blocking traffic from the DC that received the password change
to the RL box.
Another method for testing is to change the password from each DC itself
for the same test user. See which DCs do not cause a password change
event and then focus on those.
--
Good luck.
If you find this post helpful and are logged into the web interface,
show your appreciation and click on the star below.
If you want to send me a private message, please let me know in the
forum as I do not use the web interface often.