The challenge of updating locally cached credentials

2020-06-01 05:00

The issue at hand is when the password needs to be reestablished on the Active Directory side of the equation, how do you update the locally cached credentials? The affected user needs to be connected to the corporate network via VPN, and will need to press Ctrl-Alt-Del and choose Change a Password.

Known, Expired Password, Unable to Connect - without third-party password reset solutions, the VPN is a requirement here.

The service desk is going to be involved to help facilitate at least the "Connecting to the corporate network", by manually resetting their password to the existing one as a potential solution and having them change it immediately, which can involve helping with finding the keys needed to get to Change a Password.

Forced Reset - in cases where IT forces a reset of a user's credential, the act of working with the user to communicate a newly reset password needs to involve some very specific and secure form of validating the credential owner before handing over the reset password.

Updating the locally cached credentials is a security issue.

News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/2rcby82SSm8/

#credential