User profile created automatically once user change their password through OWA.
Hi,
I am facing one peculiar problem. I am running Exchange server 2007 on windows server 2008.
Problem:
Whenever user changes password through OWA, his user profile is creating in
C:\users of Exchange 2007 HUB & CAS server .
I have scaned the server with Antivirus but no
use! Is this can be a IIS related issue?
Regards,
Joy.
July 26th, 2010 1:07pm
We had the same issue, iits related to a GPO that we published, but we never went into a lab to test and see what exact policy setting made it.
Do u have BIS (blackberry internet service) users? We had an issue with BIS that corelated with the GPO and the error u are getting.
Free Windows Admin Tool Kit Click here and download it now
July 26th, 2010 2:21pm
No, We do not have BIS user.
July 26th, 2010 4:00pm
Any one have any idea on this?
Free Windows Admin Tool Kit Click here and download it now
July 27th, 2010 8:15am
As i said it a policy issue. But im not sure witch policy. My sugestion would be checking that first, and disableling the GPO policy on the CAS server and see if it helps....
July 27th, 2010 8:49am
Hi,
This is normal. It happens because
OWA change
password uses a Windows API called netUserChangePassword. This API will create a
Windows profile if the user account has Log on locally rights.
The solution to your problem is to Deny Log on Locally for Domain Users group.
1. On CAS server, Click Start->Local Security Policy.
2. Expand to 'Local Policies/User Rights Assignment', on right panel, locate the policy "Allow log on locally", remove the “Domain users” or “Everyone” from
the Allow list.
Please note that password change will function properly even if Log on Locally is denied.
Free Windows Admin Tool Kit Click here and download it now
July 27th, 2010 10:25am
Thanks for your help. It seems that problem has been resolved.
August 3rd, 2010 10:11am