5 Replies Latest reply: Mar 28, 2013 10:31 AM by tmagnuson RSS

    question about Windows password sync


      I have a few questions about the Windows SSO, I'll try to explain as best I can.


      I'm testing the functionality of Windows SSO as our environment is a little different from what I would call "standard".


      During our testing, one scenario we've come across is changing the preboot password during PBA.  From what we've seen, when we manually change the preboot password, the Windows password is never synced back to the preboot environment.  I've given the client several hours (mixed with reboots) to get these changes sorted out as I know there are some timing variables when it comes to syncing passwords.  Is this expected behavior? 


      I changed the preboot password yesterday afternoon, gave it a few hours, rebooted, SSO successfully logs me in with the correct preboot password even though the passwords are out of sync.  This morning is the same, I can sso into windows using the preboot password, even though it's not the windows password.  If I Ctrl+Alt+Del and manually change the Windows password, the change is instant to the preboot environment. 


      We've tried backend password changes which eventually get sorted out.


      I would think that even when the preboot password is changed manually, the windows password would eventually be synced back to the preboot environment.  As it stands right now, I'm essentially putting in an invalid Windows password to authenticate (preboot), and I'm passed to Windows without having to enter in the CORRECT windows password.  Can someone please explain this?


      I know I jumped around a bit, please let me know if clarification is needed.