redemption icon indicating copy to clipboard operation
redemption copied to clipboard

Published 20 hours ago verified publisher icon wallix

Cannot change expired password

Open Maurotb opened this issue 3 years ago • 1 comments

How i change my expired password?

I have this error

Jul 17 16:08:15 RDP-Proxy rdpproxy: INFO (10987/10987) -- Credssp recvTSCredentials() ErrorCode = c0000224, Facility = 0, Code = 224 Jul 17 16:08:15 RDP-Proxy rdpproxy: ERR (10987/10987) -- DecryptMessage failure: SEC_E_INVALID_TOKEN Jul 17 16:08:15 RDP-Proxy rdpproxy: ERR (10987/10987) -- Could not verify public key echo! Jul 17 16:08:15 RDP-Proxy rdpproxy: INFO (10987/10987) -- NLA/CREDSSP Authentication Failed (2) Jul 17 16:08:15 RDP-Proxy rdpproxy: INFO (10987/10987) -- RdpNego::fallback_to_tls Jul 17 16:08:15 RDP-Proxy rdpproxy: INFO (10987/10987) -- Socket RDP Target (7) : closing connection Jul 17 16:08:15 RDP-Proxy rdpproxy: INFO (10987/10987) -- connecting to 172.30.0.164:3389 Jul 17 16:08:15 RDP-Proxy rdpproxy: INFO (10987/10987) -- connection to 172.30.0.164:3389 (172.30.0.164) succeeded : socket 7 Jul 17 16:08:15 RDP-Proxy rdpproxy: INFO (10987/10987) -- Can't activate NLA Jul 17 16:08:15 RDP-Proxy rdpproxy: INFO (10987/10987) -- falling back to SSL only Jul 17 16:08:15 RDP-Proxy rdpproxy: INFO (10987/10987) -- RdpNego::NEGO_STATE_NLA Jul 17 16:08:15 RDP-Proxy rdpproxy: INFO (10987/10987) -- NEG_RSP_TYPE=3 NEG_RSP_FLAGS=0 NEG_RSP_LENGTH=8 NEG_RSP_SELECTED_PROTOCOL=5 Jul 17 16:08:15 RDP-Proxy rdpproxy: INFO (10987/10987) -- HYBRID_REQUIRED_BY_SERVER Jul 17 16:08:15 RDP-Proxy rdpproxy: INFO (10987/10987) -- Enable NLA is probably required Jul 17 16:08:15 RDP-Proxy rdpproxy: INFO (10987/10987) -- Socket RDP Target (7) : closing connection Jul 17 16:08:15 RDP-Proxy rdpproxy: INFO (10987/10987) -- throw error mod_rdp::fd event exception 23000: NLA Authentication Failed Jul 17 16:08:15 RDP-Proxy rdpproxy: [rdpproxy] psid="159499489210987" user="xxx.xxx" type="TARGET_DISCONNECTION" reason="NLA Authentication Failed!" Jul 17 16:08:15 RDP-Proxy rdpproxy: INFO (10987/10987) -- ++++++++++++++++++++ create_mod(MODULE_INTERNAL_CLOSE_BACK) +++++++++++++++++++++++ Jul 17 16:08:15 RDP-Proxy rdpproxy: INFO (10987/10987) -- ----------------------- create_close_mod_back_to_selector() -> ModPack ----------------- Jul 17 16:08:15 RDP-Proxy rdpproxy: INFO (10987/10987) -- WabCloseMod: Ending session in 600 seconds Jul 17 16:08:15 RDP-Proxy rdpproxy: [RDP Session] session_id="" client_ip="10.0.8.2" target_ip="172.30.0.164" user="xxx.xxx" device="172.30.0.164" service="" account="xxx.xxx" type="SESSION_DISCONNECTION" duration="0:00:00"

Maurotb avatar Jul 17 '20 14:07 Maurotb

Expired password change is not compatible with NLA Authentication (by design). You need to change password using other method than RDP connection or allow RDP connection without NLA in your server.

mengtan avatar Sep 17 '20 09:09 mengtan