Password reset

Glenn Maxwell 10,146 Reputation points
2022-07-08T23:54:26.737+00:00

Hi All

i have an AD service account and i have 10 Domain Controllers. this service account is used in one of the critical application hosted on a server SVR01. when i click set from command prompt on server SVR01 i can see logonserver as DC01. i want to reset the service account password, i go to DC05 and reset the service account password and i share the service account password to the application owner. the application owner doesn't change to the new password in the application. When will i see the outage in application i.e i have reset the password. how much time will this service account take to check with AD that the password has changed. please guide me.

Windows Server 2019
Windows Server 2019
A Microsoft server operating system that supports enterprise-level management updated to data storage.
3,470 questions
Windows
Windows
A family of Microsoft operating systems that run across personal computers, tablets, laptops, phones, internet of things devices, self-contained mixed reality headsets, large collaboration screens, and other devices.
4,770 questions
Windows Server 2016
Windows Server 2016
A Microsoft server operating system that supports enterprise-level management updated to data storage.
2,377 questions
Windows Server
Windows Server
A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.
12,170 questions
Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
5,898 questions
0 comments
Accepted answer
  1. Gary Reynolds 9,391 Reputation points
    2022-07-09T03:35:48.683+00:00

    The password is changed on the local domain controller and the PDC is notified of the change. This article explains the password change process and how the PDC password change notification can be changed, to rely solely on AD replication.

    https://learn.microsoft.com/en-us/troubleshoot/windows-server/identity/password-change-conflict-resolution-function

    You can use this post to confirm that the password has been replicated to all DCs, by confirming the meta time and version numbers are the same.

    https://nettools.net/troubleshoot-account-lockouts/

    Gary.

    0 comments

1 additional answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Dave Patrick 426.1K Reputation points MVP
    2022-07-09T02:14:55.397+00:00

    The new password should work almost immediately. The new password should be replicated immediately to the PDC Emulator. Depending on the link speed the old password could continue to work for a while on remote domain controllers.
    https://social.technet.microsoft.com/wiki/contents/articles/4592.how-active-directory-replication-works.aspx

    --please don't forget to upvote and Accept as answer if the reply is helpful--