0 votes

Hi,

We have noticed an issue on a number of workstations that have Adaxes installed (or had installed, we've tried uninstalling it) where that if a user changes their password via either Adaxes or via Ctrl+Alt+Delete > Change Password, it doesn't sync with the Checkpoint FDE we have on all workstations.
The users who haven't had Adaxes installed are unaffected.
Some users reset their password over a week ago and have had multiple reboots but FDE is still using the old password.
Have you come across anything like this before?

by (40 points)
0

Hello,

Could you, please, clarify what Adaxes components are installed on the mentioned workstations? Do you mean Adaxes Self-Service Client? If so, there is a possibility that passwords were reset while the computers were offsite or offline and were never connected to the local network since then. In this case Adaxes Self-Service Client updates passwords in the local credentials cache while the Checkpoint FDE software might still use passwords stored in its own cache.
For troubleshooting purposes, please, try to log in to a different domain computer connected to the local network using the account new password.

0

Just the local client is installed on the machines. The passwords are also reset while the machines are online, even if it is reset via pressing Ctrl+Alt+Delete and changing password that way.

The only difference between the user's affected and the ones not affected is that the ones who have the issue have also had Adaxes self service client installed locally.

Each user is linked to a specific machine, so logging onto a different machine with a user wouldn't sync the password anyway unfortunately.

I was just wondering if you had seen anything like this before as it's a bit of a strange issue.

Dan

0

Hello Dan,

Could you, please, make sure that new user passwords are actually changed in Active Directory (AD)? To do so you can, for example, try to log into Adaxes Web Interface using an account new password. If the user can log in, the password is synchronized with AD. In this case, for further troubleshooting, we would recommend you to contact Check Point technical support.

0

Hi,

The password is reset in AD directly, but if the machine has both the Checkpoint Endpoint client and the Adaxes client installed then the password doesn't sync from AD to Checkpoint. The solution from Checkpoint support is to uninstall Adaxes and reinstall Checkpoint which works fine, it just means we can't go ahead with rolling out Adaxes.

Please log in or register to answer this question.

Related questions

0 votes
1 answer

Hi, is there any way to bypass SSO and get directly to the Loginpage when a machine is not joined to the domain? Reason why I'm asking is, in the last months ... machines not connected to the domain to go directly to the Adaxes Login form. Best regards Ingemar

asked Nov 27, 2013 by ijacob (960 points)
0 votes
1 answer

Looking to add a delegated permission for a specific OU for a security role (Help-Desk) to provide the ability to join machines to the domain and also rename the machines in domain.

asked Apr 14, 2023 by Vish539 (460 points)
0 votes
1 answer

And the service that gets installed connects to Adaxes servers and that's how communication is facilitated?

asked Sep 25, 2020 by Reid (40 points)
0 votes
1 answer

I'm trying to modify this report to only output results where employeeType equals the values below. It reports fine. I would also like to include where employeeType ... = "(&" + $filterUsers + $filterPasswordLastSet + $customAttribute + $enabledUser + ")"

asked Mar 28 by tromanko (330 points)
0 votes
1 answer

Hi, we have replaced our local Exchange server with installation of Exchange Management Tools (EMT) installed directly on Adaxes server. And my question is: How can I force ... this is how 'Set External Senders' option looks in Adaxes config Thanks in advance

asked Apr 1, 2023 by KIT (960 points)
3,547 questions
3,238 answers
8,232 comments
547,810 users