On 3/13/2019 9:34 AM, joakim ganse wrote:
>
> First of all you need to install the pwd filter on all domain servers.
>
> The issue you have is because netbios and /or remote editing of registry
> is not allowed.
>
> You can install the filter manually on that server. There should be a
> section about that in the documentation. It is surely in a few older
> posts as well.

Lothar published a cool solution with a Windows INF file to do the Reg
and file copies as well a while back.

Hi
I have installed the pwd filter on other server, the server filter is running.but still can't sync password

Me to a dozen years ago:
https://www.novell.com/coolsolutions/tools/19558.html

As joakim mentioned, ALL DCs need these, else you will likely lose
password change events.

Get a level five (5) trace from the driver (shim), which is probably
running in a Remote Loader (RL), and post the output here at the time of
the password change. You should see some activity right then, but
otherwise your password filter is either not configured correctly or the
network is blocking traffic from the DC that received the password change
to the RL box.

Another method for testing is to change the password from each DC itself
for the same test user. See which DCs do not cause a password change
event and then focus on those.

--
Good luck.

If you find this post helpful and are logged into the web interface,
show your appreciation and click on the star below.

If you want to send me a private message, please let me know in the
forum as I do not use the web interface often.