Announcement

Collapse
No announcement yet.

Expired password on TS GateWay 2008 with NAP

Collapse
X
  • Filter
  • Time
  • Show
Clear All
new posts

  • Expired password on TS GateWay 2008 with NAP

    Hi,

    I want to know if it is possible to give the user the oppertunity to change his/her password while logging on to a Terminal Server Gateway 2008. This is only occurs when the password has expired. (change at next logon)

    in normal situations the connection builds up correctly (with NAP enforced), but when the password expires, this error shows up: "The address of the Terminal Server Gateway cannot be found, or is invalid".

    Setup: virtual Test environment: 1 DC, 1 TSG2008+NPS, 1 workstation XP sp3.
    (the workstation is not a domain member)

    If this is possible, where can i configure this?

  • #2
    Re: Expired password on TS GateWay 2008 with NAP

    Please try:

    http://blogs.msdn.com/ts/archive/200...nnections.aspx

    I didnt test it, but please review user comments bellow the text.


    However, using Passwords with NAP is a waste of time and effort from my point of view.
    Best Regards,

    Yuval Sinay

    LinkedIn: https://www.linkedin.com/in/yuval14, Blog: http://blogs.microsoft.co.il/blogs/yuval14

    Comment


    • #3
      Re: Expired password on TS GateWay 2008 with NAP

      Thanks, i will look into them!

      --

      Luckily i am still testing this setup. Our only goal is to check if external users who want to connect to internal servers with RDP have their workstations at a certain level. (updates, firewall, virusscanner ect)

      Comment


      • #4
        Re: Expired password on TS GateWay 2008 with NAP

        I can recommended to use SSL VPN from Juniper/Citrix with Secure Desktop enable.
        This the only way to gives a real security (+ smart card/OTP)
        Best Regards,

        Yuval Sinay

        LinkedIn: https://www.linkedin.com/in/yuval14, Blog: http://blogs.microsoft.co.il/blogs/yuval14

        Comment


        • #5
          Re: Expired password on TS GateWay 2008 with NAP

          some more info on this problem, found some more recent info:

          http://social.technet.microsoft.com/...0-d50d4c6a0cf7

          Short conclusion, you cant logon to Terminal Server 2008 Gateway with expired passwords or passwords that must be reset. (option set)

          Comment


          • #6
            Re: Expired password on TS GateWay 2008 with NAP

            Don't they see the warning "hey your password will expire in 14 days" ?

            Lazy users.

            Comment


            • #7
              Re: Expired password on TS GateWay 2008 with NAP

              Originally posted by Garen View Post
              Don't they see the warning "hey your password will expire in 14 days" ?

              Lazy users.
              Yes they do of course, but our policy is to change them every 30 days, users mostly wait as long as they can. (dont think thats something only happening here)

              It will happen that an account is expired. Maybe weekend between or something else. Someone has to reset the account first before remote access is possible through TSG2008.

              Comment

              Working...
              X