02-03-2021 08:48 AM
Our users use GlobalProtect with Windows 10 to VPN to office from home. Users sign into their AD accounts in Windows first, then connect GlobalProtect second, using the same AD account. The first attempt to connect the VPN will always result in GlobalProtect requesting the user's account & password. And subsequent connections happen without any credential requests as they have been saved in Credential Manager (so the user simply has to click 'Connect'). When our users change their password in Windows/Active Directory, GlobalProtect should be prompting the user to update the password at the next sign on. It is not doing this in many cases and is resulting in AD account lockouts. We have even gone so far to have the user disconnect after a password change, shut down the laptop, power it back on, sign on, and then reconnect GlobalProtect. But GP still will not ask for a new password. Some users are actually able to connect with their old password AFTER the change. Other users are just locking their AD accounts when GP attempts to use those credentials over and over.
Any suggestions for resolving this issue?
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!