michalwodi

New Member
Joined
Dec 23, 2019
Messages
2
Hi,

As in the subject, the user has no message about changing the password when he has no access to anything except the program started at login.

Is there any solution for this problem?

Windows server 2012 r2
 
Solution
This probably has nothing to do with passwords. I would start by checking if they're being logged in with a temp profile.

Open powershell and type $env:USERPROFILE if it has temp in the name then you'd need to fix the profile in the registry and reboot the system.


Fixing temp profiles
  1. Get the user's SID
  2. From their login type whoami /user
  3. Open regedit and go to HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList
  4. There will likely be two SIDs for the user with one having .bak at the end
  5. Delete the key without the .bak on it
  6. Remove .bak from the other.
  7. Reboot and test
This probably has nothing to do with passwords. I would start by checking if they're being logged in with a temp profile.

Open powershell and type $env:USERPROFILE if it has temp in the name then you'd need to fix the profile in the registry and reboot the system.


Fixing temp profiles
  1. Get the user's SID
  2. From their login type whoami /user
  3. Open regedit and go to HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList
  4. There will likely be two SIDs for the user with one having .bak at the end
  5. Delete the key without the .bak on it
  6. Remove .bak from the other.
  7. Reboot and test
 
Solution