Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1318
Views
0
Helpful
1
Replies

3000 NT domain\username authentication

bdedek
Level 1
Level 1

‎08-13-2003 06:38 PM - edited ‎02-21-2020 10:08 AM

Hi,

Is there a way to force a Windows domain prefix or, prevent or strip the Windows domain portion of a username on the 3000 client so as to lock a person into authenticating against the domain controller specified in the configuration? A company has a trusted domain configuration with strong passwords on the authenticating server for the 3000. However, their users are able to prefix their username with a trusted domain and use a less secure password to obtain access to the VPN 3000.

Labels:
0 Helpful
1 Reply 1

mostiguy
Level 6
Level 6

‎08-14-2003 04:14 AM

I am not aware of any way to do that.

Why are not all domains at the same password strength level? There is no point to having a strong password policy for domain A if it trusts B, which has a weaker one, as users residing in B can then generally access resources in A.

Also, it sounds like users have a choice of user accounts - accts w/ strong passwords in A, and weak in B. Is there a reason for this?

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents