Allow RDP User To Reset Domain Password

less than 1 minute read

Description:

Had an issue the other day where a user wasn’t able to remote into our servers because their AD password had expired. Instead of me resetting it on the domain controller, we did the following:

To Resolve:

  1. Have the user create a .rdp configuration to the destination computer on the domain.

  2. Include the following property (open using notepad – add to last line):

enablecredsspsupport:i:0
  1. When you use that configuration file to connect, you will be presented with the login GUI, and subsequently you will be presented with the change password dialog.

It should be noted that this only works if the server does not require NLA:

 

References:

https://superuser.com/questions/1196477/allow-users-to-change-expired-password-via-remote-desktop-connection/1196567#1196567