Posted on 01-26-2021 09:37 AM
I have users that need to maintain two or more assets. At the moment - the company is still requiring the AD bind (I'm working on that).
When they need to change the password, they'll make the change on one asset - this leaves the other asset with a dual login - the local account - then the domain account.
Does anyone have a suggestion on how they can update the password on both systems to keep them in sync?
These are either Mojave or Catalina.
I don't have anything like Jamf connect as an option at this time.
Posted on 02-10-2021 09:06 AM
I'm grateful if any input is available
Posted on 02-10-2021 09:18 AM
As MacOS doesn't allow you to connect to WiFi on the login screen, they would have to wire to the network & login with their updated credentials, they will also be prompted to update their key chain. In summary - as the Macs can't hit the domain controller at login they are stuck with out-of-date passwords.
Posted on 02-22-2021 11:52 AM
I'm in a similar situation, we utilize AD Binding as well. Currently our users are resetting via Sys Prefs > Users&Groups > change pw. The problem is, we are stripping admin rights soon, and this option requires admin currently. I'm curious how others are handling domain pw resets, specifically like the OP mentioned with multiple devices and keeping the filevault login and domain mobile passwords in sync.
Posted on 03-04-2021 01:54 PM
@brianmcbride99 My end users are standard users and they're able to change their passwords fine. The biggest problem is we use a proxy server so they have to update the proxy passwords and inevitably get prompted for their login password to update AuthBrokerAgent.