Sep 4, 2017 1:09 AM
1 Posts

Change Password on first login only works on second login

  • Category: Security
  • Platform: Windows
  • Release: 9.0.1
  • Role: Administrator,End User
  • Tags:
  • Replies: 1

Hi all,

I have an issue. I have a security policy for custom password parameters. It also uses the "Change password on first notes client use" option turned on. IDVault is configured too. I register a user with this security policy applied (an explicit policy in this case), and assign it an initial password. 

Next I use a new multiuser install of 9.0.1 and launch it as that user. I use a configfile to auto configure the client. There is no SSO enabled. The user is prompted for the password. I enter the inital password and client setup completes. I can then access databases on the server. At no point am I prompted to change my password. Now I close the client.

I launch the client a second time, enter the initial password and then I am prompted to change the password "at first logon", even though this is the second login.

I suspect this is a very common issue. It seems as though the policy is only applied to the client AFTER the initial login, and therefore the user is not prompted until the second login. 

 

Anyone seen this before?

Sep 7, 2017 11:32 AM
174 Posts
This is probably the way it works

When you first login, no policies have been pushed down. You have to be logged in at least once to have policies pushed down to the client. This is why you are consistently seeing the effects of the policy only after the first download of the security policy.