VMware Workspace ONE Community
VMSal
Contributor
Contributor
‎07-20-2020 09:54 AM

User is prompted to change password on iPhone 1 week after he changes password in Windows

What may cause  a user password to not sync for 1 week?

We've had users being prompted to change password on iPhone only 1 week after he changes password in Windows.

Did anyone have this problem and how did you solve it?

Thank you for your help!

Labels (2)
Reply
6 Replies
chengtmskcc
Expert
Expert
‎07-20-2020 11:21 AM

Are you an on-premises or SaaS customer? Have you reviewed your AirWatch Cloud Connector log to see if there has been any communication issue?

Reply
0 Kudos
VMSal
Contributor
Contributor
‎07-20-2020 01:06 PM

Hi chengtmskcc,

We are an On-premise set up (ver. 19.7.0.1 (1907) ). Everything (email, appntmnts, etc) sync'ed for the user and there was no interruption of any service. Only the password did not update on the device, until 1 week after it was changed in Windows (AD).

Reply
0 Kudos
chengtmskcc
Expert
Expert
‎07-20-2020 01:12 PM

Just so we are on the same page, were you referring to the mailbox for mail sync or something else?

Reply
0 Kudos
VMSal
Contributor
Contributor
‎07-21-2020 12:56 PM

Hello chengtmskcc,

I appreciate your response. I don't understand what you mean with "mailbox for mail sync". Are you talking about the device, the mail server or is it something else? Thank you for your attention.

Sal

Reply
0 Kudos
chengtmskcc
Expert
Expert
‎07-21-2020 08:41 PM

Where on the mobile device is the user being prompted to change the password?

Reply
AntonThirifays
Enthusiast
Enthusiast
‎07-23-2020 05:36 AM

Hi VMSal,

Following what chengtmskcc was saying, which password are you talking about ?

Depending on your setup, you would have from one to xxx passwords that user should enter on their device. Even though, with the use of Biometric ID, users barely have any password to enter on their mobile device.

The most common are :

- 1 passcode to unlock the device - set through Device Profile

- 1 passcode to unlock the WS1 Apps - set through All Settings > Apps > Security Settings

Those two are totally unrelated to AD credentials

Now, depending if you are using SEG or Access or some other products, and you do not have a certificate based authentication, user would then be prompted to enter their AD credentials.

If that's the case, then yes, your case seem weird.

Also, let's assume you are talking about a service with NTLM auth accessed from web browser, then user should enter their AD credentials indeed.

Finally, are you using AD only or other LDAP services for instance ? If yes, are they both linked ? What is your main source in WS1 ?

Are you sure this is not just a coincidence between AD password expiry and Passcode / WS1 apps passcode expiry ?

Anton

Reply
0 Kudos