Wyse Technology 62230WL Benutzerhandbuch
32
Chapter 5
Changing Passwords with the File Based Write Filter
On Microsoft Windows based machines, account passwords are regularly changed with
the domain controller for security purposes. The same password process is applicable for
a thin client if the thin client is a member of such a domain. With the File Based Write Filter
enabled, a thin client will successfully make this password change with the domain
controller. However, since the File Based Write Filter is enabled, the next time the thin
client is booted it will not retain the new password. In such cases, you can use the
following options:
• Disable the machine account password change on the thin client by setting the
• Disable the machine account password change on the thin client by setting the
DisablePasswordChange
registry entry to a value of 1.
• Disable the machine account password change on the Windows based server by using
the Microsoft documentation for the operating system. For example, on Windows 2003
Server, set the RefusePasswordChange registry entry to a value of 1 on all domain
controllers in the domain (instead of on all workstations). Wyse thin clients will still
attempt to change their passwords every 30 days, but the change will be rejected by
the server.
Tip
If you set the RefusePasswordChange registry entry in the Windows 2003
Domain Controller to a value of 1, the replication traffic will stop, but not the
thin client traffic. If you also set the DisablePasswordChange registry
entry to a value of 1 in the thin client, both thin client and replication traffic will
stop.
Disabling the machine account password change on the thin client
1.
Start the Registry Editor by clicking Start > Run, entering regedit in the Open text
box, and then clicking OK.
2.
Locate and click the following registry subkey:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Netlogon\P
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Netlogon\P
arameters
3.
In the right pane, click the DisablePasswordChange entry.
4.
On the Edit menu, click Modify.
5.
In the Value data text box, enter a value of 1, and then click OK.
6.
Quit the Registry Editor.
Disabling the machine account password change in Windows 2003
1.
Start Registry Editor by clicking Start > Run, entering regedit in the Open text box,
and then clicking OK.
2.
Locate and click the following registry subkey:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Netlogon\P
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Netlogon\P
arameters
3.
On the Edit menu, point to New and then click DWORD Value.
4.
Enter RefusePasswordChange as the registry entry name, and then click ENTER.
5.
On the Edit menu, click Modify.
6.
In the Value data text box, enter a value of 1, and then click OK.
7.
Quit the Registry Editor.