Topic: password expiry

[brianr]

I am having trouble with a WIndows network, domain logging into sme 6.0.1 (and updates).

Every now and again we get a message at login on one workstation oir another saying that the password will expire in N days (where n = 10, or 11, etc).  So far nothing seems to have actually expired!

If you choose the option to renew the password, this fails.

I have googled the problem, and can see that there can be some issues with samba and pam, but do not feel I understand it all enought to fiddle with the parameters.

Does anyone have any ideas on this problem?

[alejandro]

Just a question before answers.
The expiration message is from windows or from server?

[brianr]

from windows, at login time.

[alejandro]

Are you sure you are using domain logon?
If your pasword is expiring or windows is advicing it will expire, it refers to a local user of the window's domain, not for the sme's domain.
Non local domain user's credentials have no expiration check at windows workstation logon stage.
check in Control Panel > Users
You should have
user ---------domain------------- group
"admin" ---"pc-domain"---------"Administrators"
"you"-----"sme's domain" ------"whatever group"

[brianr]

This is an installation of about 15 workstations, and they have all been configured (by me) to logon to the SMEServer by domain.  Previously they logged onto a Windows 200 server.  There is only the SMeserver on the network.

In control panel/users  I can only see the local users (which does not include the username that we logon to via the domain).

The Pcs are on XP Pro, with the very latest in updates.

[ansentry]

brianr,

A question if you don’t mind.

On your XP PC’s have you made the required changes to the registry?

If not, then the XP PC will not connect correctly to the SME Domain.

If I am correct and you have not made the changes, post back and I will detail the procedure that I follow when I do this.

[brianr]

I did the registry change when I installed the systems, as you say, Xp will not recognise the domain controller without it.

The PCs and network have been in use sucessfully by the users for well over 2 months, its just that we get this "password expiry" warning every now and again on some of the PCs.

[ansentry]

Brian,

Have you added the domain users to User accounts in windows?

One each PC that I setup I only have the Administrator as a local user. I then add the domain users to the PC. I then have a login script on the SME that connects each user to their correct drives.

[vincentmeek]

If the PCs were previously connected to a 2000 server domain, it maybe the password/security policy from that server.  If so search M$ site for instructions on removing the policies fom these PCs.

Just a thought.