Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
675
Views
0
Helpful
1
Replies

Run script at login to update the cached password on a Windows PC

SlinkTMP
Level 1
Level 1

‎03-17-2022 02:27 PM

I will start mentioning that I am not a Cisco Admin.

 

Users are allowing their LAN Ids to expire even after multiple communications and warnings, which create issues with the remote workforce. Once a LAN password is expired, an analysts or a self service portal provides a new password and unlocks the account. The issue now is that the LAN ID used to connect to the VPN is out of synch with the cached password on the PC. The users type in the new password and do not attempt to synch their passwords which causes them to repeat the process due to lockouts.

 

Is there a script or a way that would force the LAN password used to connect to the VPN and automatically synch it to the user once successfully logged into the network? I would assume the VPN would have to look to synch the passwords at every successful login attempt.

 

Any help would be great. 

Labels:
0 Helpful
1 Reply 1

Milos_Jovanovic
VIP Alumni
VIP Alumni

‎03-18-2022 12:07 AM

Hi @SlinkTMP,

What would help you here is AnyConnect Management Tunnel. Idea is that workstations are silently, and without user interaction establish VPN tunnel, through which only restricted traffic would flow (such as communication with AD servers, SCCM servers or similar). This way, even when users are not logged in, PC is capable of communicating with AD which can help you with cached accounts.

You can find more details about Management Tunnel here. There are certain prerequisites for this to be acomplished, but it is very effective solution.

BR,

Milos

0 Helpful
Customers Also Viewed These Support Documents