J
Jelle Holtkamp
Hello all,
I'm trying to understand what exactly happens when a user changes his/her password, but does not log off their session. The story behind this is as follows:
We have a Citrix environment with an on-premise exchange and Office 365. Office 365 is used solely for the local installation of Office 2016 and licensing that installation. We use ADFS to authenticate against Office 365. We have a very strict security policy which requires users to change their password at a highly regular basis. Whenever a user changes his/her password but does not log off, after about 15 minutes, they get prompted by Outlook to enter their username/password and they need to sign out/sign back into Office 365. Logging off and back in fixes this problem, but users tend to forget they need to do this and because of the frequency of the password changes this can become a nuisance for them.
Normally, Windows logon will enable users to authenticate to for example Exchange without requiring them to enter their credentials. I understand that changing your password will break existing sessions, but I'm curious about how Windows authentication exactly works, and why it requires a relog before you can authenticate without enter username/password again. And of course to solve the issu, if there is a way we can reauthenticate during the session without user interaction.
Best regards,
Jelle
P.S. I posted this here because the question is basically about windows authentication, but with all these moving parts I could understand it if the post needs to be moved elsewhere
Continue reading...
I'm trying to understand what exactly happens when a user changes his/her password, but does not log off their session. The story behind this is as follows:
We have a Citrix environment with an on-premise exchange and Office 365. Office 365 is used solely for the local installation of Office 2016 and licensing that installation. We use ADFS to authenticate against Office 365. We have a very strict security policy which requires users to change their password at a highly regular basis. Whenever a user changes his/her password but does not log off, after about 15 minutes, they get prompted by Outlook to enter their username/password and they need to sign out/sign back into Office 365. Logging off and back in fixes this problem, but users tend to forget they need to do this and because of the frequency of the password changes this can become a nuisance for them.
Normally, Windows logon will enable users to authenticate to for example Exchange without requiring them to enter their credentials. I understand that changing your password will break existing sessions, but I'm curious about how Windows authentication exactly works, and why it requires a relog before you can authenticate without enter username/password again. And of course to solve the issu, if there is a way we can reauthenticate during the session without user interaction.
Best regards,
Jelle
P.S. I posted this here because the question is basically about windows authentication, but with all these moving parts I could understand it if the post needs to be moved elsewhere
Continue reading...