Thanks Jhall, we got a workaround in place thanks to the info in the KB article.
We have a similar issue. Can you share your workaround with us?
Director, IT Ops
AIDS Healthcare foundation
MDE 7.1.3 has a new feature to Detect and notify of password changes in Windows Active Directory. More informaiton can be found in the MDE 7.1.3 release notes PD25903.
Note: The option is found under Enable SSO called "Periodically check domain credentials for changes, and ask the user to re-capture their Drive Encryption password if required"
Although the change is not captured in AD, the client will check if the credentials stored in the Preboot File System are current and prompt the user to lock and unlock the cleint if they are not.
Can't rememeber exactly what we did back then as it was a few months ago. If this issue pops up now, we enforce a password reset from the desktop and then run an agent wakeup on the endpoint, so that the Agent captures the password changes and passes it back to ePO.