When a user performs a password reset, the reset is done directly against the user directory (i.e Active Directory).
This can be a problem for remote users as this update only happens on the server and their locally cached credentials are not able to be updated.
This user then needs to connect to the corporate network in order for them to use their newly reset password.
This article shows how you can use the LogonBox SSPR Credentials Provider in combination with our LogonBox VPN product.
Pre-requisistes
You need to have the SSPR Credentials Provider installed and connected to your LogonBox SSPR.
You will need to have deployed and configured the LogonBox VPN server.
The client system should have the LogonBox VPN client installed.
Configure the VPN client
The VPN client should now be configured with a new connection for the user who will be using this system.
For example, on a Windows client, refer to step 2 of this article.
Confirm that you can connect with the client.
Password Reset via the Desktop Credentials Provider
You will notice now on the Windows login screen, that along with the expected Reset Password and Unlock Account links that the credentials provider adds, you also now have a Start VPN Connection link too.
The user can now click on the Reset Password link and follow the prompts to reset their password, starting with their username.
Then completing their authentication.
Finally, resetting the password.
Connect the VPN and log in
The user can now type in their username and password and click the Start VPN Connection link.
This brings up the VPN connection dialogue.
The user enables the connection.
The VPN connection window may now be closed and user can continue to log on to Windows.
As the VPN connection is active, the user's new password can be used and this automatically updates the locally caches copy of the credentials.
