Share via

How to change domains users passwords through VPN?

Doria 1,246 Reputation points
2020-09-02T18:53:30.533+00:00

Hi everyone!

We have an old problem that today, in the pandemic, has surfaced again. How do I get domain users to change their passwords through VPN? Is it possible to use Network Policy Server (RADIUS) to reach that?

Hope I was clear enough.

Windows Server
Windows Server
A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.
13,133 questions
Accepted answer
  1. Candy Luo 12,701 Reputation points Microsoft Vendor
    2020-09-03T09:07:48.627+00:00

    Hi ,

    Based on my understanding, you want to allow VPN client (domain user) to change their password themselves when password expired. Is that right? Please feel free to let me know if my understanding is wrong.

    Did you want to achieve the following goal?When password has expired, VPN clients can change their password by themselves.(I used windows build-in VPN client to do the test, we have no third-party VPN client in our lab to do the test.)

    22431-image.png
    22441-image.png

    If yes, just check Allow client to change password after it has expired in EAP MSCHAPV2 Properties from NPS network policy. Then we can change password by ourselves when password expired.

    22407-image.png

    If we did not check this option, then after password expired we cannot connect to VPN. As the picture below:

    22462-image.png

    Hope this can help you.

    --Please Accept as answer if the reply is helpful--

    Best Regards,

    Candy

    2 people found this answer helpful.

6 additional answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Anonymous
    2020-09-03T01:16:22.707+00:00

    Try;

    • Click Start.
    • Type osk.
    • Hit enter.
    • Once the On screen Keyboard is open, hold ctrl+Alt on your physical keyboard, then click on the DEL key in the on screen keyboard.
    • Minimize the on screen Keyboard.
    • Click Change a password.
    • Close osk.

    --please don't forget to Accept as answer if the reply is helpful--

    2 people found this answer helpful.
  2. Anonymous
    2020-09-03T02:27:54.94+00:00

    What problem are you having? What are you missing?

    • From run box type osk then ENTER (starts the on screen keyboard)
    • Once the on screen keyboard is open, hold ctrl+ Alt on your laptop keyboard, then use mouse to click on the DEL key in the on screen keyboard.
    • Minimize the on screen keyboard (to get it out of the way)
    • Click Change password, and done

    --please don't forget to Accept as answer if the reply is helpful--

    1 person found this answer helpful.
    0 comments
  3. Anonymous
    2020-09-02T19:25:22.627+00:00

    Are you saying password expires while not connected? In that case maybe they can use outlook web access to change it.

  4. SethWH 436 Reputation points
    2020-09-02T20:31:40.547+00:00

    What do you use for VPN? With Cisco AnyConnect, it's best to login with cached credentials and connect to VPN. Then hit Ctrl-Alt-Del and reset the password. Next step, would be to lock the computer and unlock with new password. * Do not log off and kill VPN connection *

    If you need to alert users of their passwords expiring (before a helpdesk ticket is needed), check out this script:

    AD-account-expiry-199b5ae7

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.