Forum Discussion
Solved
Long time disconnected from server
Hi,
Some of my customers (small companies 2-6 users) have taken home their normally connected domain computers. Is there a maximum time that I need to be concerned about if these workstations remain off the network where the user will no longer be able to login to their normal user account under Windows 10?
Additional notes are that the users have access to their Microsoft 365 Exchange online accounts from their home internet service. Also, they have taken home a number of files that keeps them working even though disconnected from the server.
- See https://techcommunity.microsoft.com/t5/core-infrastructure-and-security/secure-channel-expired-machine-account-password-concerns/ba-p/1333535 for additional discussion around this. Also, if you have any scheduled scripts that delete devices that haven't contacted AD recently (typically keyed off of the last machine account password change) you might want to turn those off for a while.
4 Replies
- See https://techcommunity.microsoft.com/t5/core-infrastructure-and-security/secure-channel-expired-machine-account-password-concerns/ba-p/1333535 for additional discussion around this. Also, if you have any scheduled scripts that delete devices that haven't contacted AD recently (typically keyed off of the last machine account password change) you might want to turn those off for a while.
- It's contingent on AD policy setting the number of days a machine can go without authenticating back to the domain. If these users are authenticating to VPN back to the local network, they should be fine. If not, you'll run into issues. Just my two cents.
Thanks. No VPN. I never set a specific policy. Do you know what the default number of days is? Also, when you say there will be "issues", what will happen?
