Sign in with
Sign up | Sign in
Your question

User Password Will Not ResetChange over VPN

Last response: in Windows 2000/NT
Share
Anonymous
March 29, 2005 1:03:02 PM

Archived from groups: microsoft.public.win2000.active_directory (More info?)

Hello,

On our network, we use 3com VPN routers to access our Cisco PIX for VPN
access to our network. Everything works wonderful;

Except for users being able to change their password over the VPN. This
becomes essential for new users who must change their password for a new
account. Any help is appreciated in this regard, thank you.

-James
Anonymous
March 29, 2005 5:04:24 PM

Archived from groups: microsoft.public.win2000.active_directory (More info?)

This probably has something to do with binding to port 636. LDAP
communications normally occur on port 389, but password activity occurs on a
secure port which has been setup on 636.

See if there is port is being blocked some how.

--

Paul Bergson MCT, MCSE, MCSA, CNE, CNA, CCA

This posting is provided "AS IS" with no warranties, and confers no rights.



"JDennis187" <JDennis187@discussions.microsoft.com> wrote in message
news:D 7343A0E-C07E-46F6-A89D-940C5FCBE450@microsoft.com...
> Hello,
>
> On our network, we use 3com VPN routers to access our Cisco PIX for VPN
> access to our network. Everything works wonderful;
>
> Except for users being able to change their password over the VPN. This
> becomes essential for new users who must change their password for a new
> account. Any help is appreciated in this regard, thank you.
>
> -James
Anonymous
March 29, 2005 5:04:25 PM

Archived from groups: microsoft.public.win2000.active_directory (More info?)

Hey paul,

A port being blocked had been my thought to. Do you think the port would
more likely be on the cisco pix side or the 3com vpn side? Any other hints
would help greatly, im not a cisco guru.

"Paul Bergson" wrote:

> This probably has something to do with binding to port 636. LDAP
> communications normally occur on port 389, but password activity occurs on a
> secure port which has been setup on 636.
>
> See if there is port is being blocked some how.
>
> --
>
> Paul Bergson MCT, MCSE, MCSA, CNE, CNA, CCA
>
> This posting is provided "AS IS" with no warranties, and confers no rights.
>
>
>
> "JDennis187" <JDennis187@discussions.microsoft.com> wrote in message
> news:D 7343A0E-C07E-46F6-A89D-940C5FCBE450@microsoft.com...
> > Hello,
> >
> > On our network, we use 3com VPN routers to access our Cisco PIX for VPN
> > access to our network. Everything works wonderful;
> >
> > Except for users being able to change their password over the VPN. This
> > becomes essential for new users who must change their password for a new
> > account. Any help is appreciated in this regard, thank you.
> >
> > -James
>
>
>
Related resources
Anonymous
March 29, 2005 6:13:02 PM

Archived from groups: microsoft.public.win2000.active_directory (More info?)

There is a utility in the support tools d:\support\tools\setup that will
install to c:\program files\support tools\ldp.exe which can assist in trying
to track down bind issues to AD.

Connect and bind on 636 (Or try) using LDP.

http://support.microsoft.com/default.aspx?scid=kb;en-us;255602

This will tell you right away if it is port 636 you can also bind on 389 to
dbl check connectivity.

--

Paul Bergson MCT, MCSE, MCSA, CNE, CNA, CCA

This posting is provided "AS IS" with no warranties, and confers no rights.



"JDennis187" <JDennis187@discussions.microsoft.com> wrote in message
news:60C8AE4E-9635-4B0D-B941-DFD2BABC8220@microsoft.com...
> Hey paul,
>
> A port being blocked had been my thought to. Do you think the port would
> more likely be on the cisco pix side or the 3com vpn side? Any other hints
> would help greatly, im not a cisco guru.
>
> "Paul Bergson" wrote:
>
> > This probably has something to do with binding to port 636. LDAP
> > communications normally occur on port 389, but password activity occurs
on a
> > secure port which has been setup on 636.
> >
> > See if there is port is being blocked some how.
> >
> > --
> >
> > Paul Bergson MCT, MCSE, MCSA, CNE, CNA, CCA
> >
> > This posting is provided "AS IS" with no warranties, and confers no
rights.
> >
> >
> >
> > "JDennis187" <JDennis187@discussions.microsoft.com> wrote in message
> > news:D 7343A0E-C07E-46F6-A89D-940C5FCBE450@microsoft.com...
> > > Hello,
> > >
> > > On our network, we use 3com VPN routers to access our Cisco PIX for
VPN
> > > access to our network. Everything works wonderful;
> > >
> > > Except for users being able to change their password over the VPN.
This
> > > becomes essential for new users who must change their password for a
new
> > > account. Any help is appreciated in this regard, thank you.
> > >
> > > -James
> >
> >
> >
Anonymous
March 29, 2005 6:13:59 PM

Archived from groups: microsoft.public.win2000.active_directory (More info?)

I would guess it is on the server (Receiving side).

--

Paul Bergson MCT, MCSE, MCSA, CNE, CNA, CCA

This posting is provided "AS IS" with no warranties, and confers no rights.



"JDennis187" <JDennis187@discussions.microsoft.com> wrote in message
news:60C8AE4E-9635-4B0D-B941-DFD2BABC8220@microsoft.com...
> Hey paul,
>
> A port being blocked had been my thought to. Do you think the port would
> more likely be on the cisco pix side or the 3com vpn side? Any other hints
> would help greatly, im not a cisco guru.
>
> "Paul Bergson" wrote:
>
> > This probably has something to do with binding to port 636. LDAP
> > communications normally occur on port 389, but password activity occurs
on a
> > secure port which has been setup on 636.
> >
> > See if there is port is being blocked some how.
> >
> > --
> >
> > Paul Bergson MCT, MCSE, MCSA, CNE, CNA, CCA
> >
> > This posting is provided "AS IS" with no warranties, and confers no
rights.
> >
> >
> >
> > "JDennis187" <JDennis187@discussions.microsoft.com> wrote in message
> > news:D 7343A0E-C07E-46F6-A89D-940C5FCBE450@microsoft.com...
> > > Hello,
> > >
> > > On our network, we use 3com VPN routers to access our Cisco PIX for
VPN
> > > access to our network. Everything works wonderful;
> > >
> > > Except for users being able to change their password over the VPN.
This
> > > becomes essential for new users who must change their password for a
new
> > > account. Any help is appreciated in this regard, thank you.
> > >
> > > -James
> >
> >
> >
Anonymous
March 29, 2005 6:14:00 PM

Archived from groups: microsoft.public.win2000.active_directory (More info?)

Thank You Paul,

I will try to let you know my results.

"Paul Bergson" wrote:

> I would guess it is on the server (Receiving side).
>
> --
>
> Paul Bergson MCT, MCSE, MCSA, CNE, CNA, CCA
>
> This posting is provided "AS IS" with no warranties, and confers no rights.
>
>
>
> "JDennis187" <JDennis187@discussions.microsoft.com> wrote in message
> news:60C8AE4E-9635-4B0D-B941-DFD2BABC8220@microsoft.com...
> > Hey paul,
> >
> > A port being blocked had been my thought to. Do you think the port would
> > more likely be on the cisco pix side or the 3com vpn side? Any other hints
> > would help greatly, im not a cisco guru.
> >
> > "Paul Bergson" wrote:
> >
> > > This probably has something to do with binding to port 636. LDAP
> > > communications normally occur on port 389, but password activity occurs
> on a
> > > secure port which has been setup on 636.
> > >
> > > See if there is port is being blocked some how.
> > >
> > > --
> > >
> > > Paul Bergson MCT, MCSE, MCSA, CNE, CNA, CCA
> > >
> > > This posting is provided "AS IS" with no warranties, and confers no
> rights.
> > >
> > >
> > >
> > > "JDennis187" <JDennis187@discussions.microsoft.com> wrote in message
> > > news:D 7343A0E-C07E-46F6-A89D-940C5FCBE450@microsoft.com...
> > > > Hello,
> > > >
> > > > On our network, we use 3com VPN routers to access our Cisco PIX for
> VPN
> > > > access to our network. Everything works wonderful;
> > > >
> > > > Except for users being able to change their password over the VPN.
> This
> > > > becomes essential for new users who must change their password for a
> new
> > > > account. Any help is appreciated in this regard, thank you.
> > > >
> > > > -James
> > >
> > >
> > >
>
>
>
!