但是,每当用户的帐户处于必须重置密码的状态时,只要他们尝试使用RDP进行连接,他们就会从远程桌面连接客户端(v10.0)收到以下错误消息:
You must change your password before logging on the first time. Please
update your password or contact your system administrator or technical
support.
使用远程桌面连接管理器客户端(v2.7)时,会发生同样的情况,但错误略有不同:
The user password must be changed before logging on for the first time
服务器是独立的,而不是域.由于安全合规性要求,需要启用网络级别身份验证.服务器没有控制台访问权限,因为它是云虚拟机.
在没有牺牲NLA安全配置的情况下,我没有成功找到任何解决办法.我错过了一些明显的东西吗我们将非常感激地收到任何答复或评论.谢谢.
In the protocol specification for CredSSP,there is no reference to
the ability to change the user’s password while NLA is running.
Therefore,the observed behavior can be considered “by design.”CredSSP is the underlying technology that enables NLA,and it does not
support password changes. Therefore,password changes are not enabled
in MSTSC. Other RD clients that support NLA should be unable to change
the user’s password.
正如他们所建议的,通过RDWeb启用更改密码是一种选择.我见过的另一个选择是通过Exchange webmail更改密码.
