I suppose nothing is suited to 100% of use cases. I change my expired password when I VPN in and I cache my Google Drive passwords using the Windows credential manager is just 1 of <large number> of possibilities. At least where I’ve worked, no one uses the Windows credential manager (since it can’t really be managed in any way) – 3rd party solutions like TIM are common, plus many don’t use Windows username/password for VPN authentication, and a minority use pre-user auth VPN – so there’s a few ways to avoid the issue (not to mention most people are in the office at least some of the time)
That all said, this problem predates any “age of the cloud” – it’s been this way 2001 when XP came out. On a semi-tangent: who puts their domain controllers “in the cloud”? (and how?) Domain controllers in a data centre I can understand, but surely a cloud offering (whether IaaS or PaaS) screams security issues. Cheers Ken From: [email protected] [mailto:[email protected]] On Behalf Of David Connors Sent: Tuesday, 7 May 2013 11:36 AM To: ozDotNet Subject: Re: Windows forgetting app passwords On Tue, May 7, 2013 at 10:47 AM, Ken Schaefer <[email protected]<mailto:[email protected]>> wrote: If you change your password after you have connected your VPN (i.e. your password hasn’t expired yet) –or- you have domain connectivity already (pre-user auth VPN), or there’s a server-side password reset (e.g. via OWA or 3rd party portal) after you’ve connected the VPN (and you’re asked to lock/unlock your computer), then everything’s OK. It isn't really suited for the age of the cloud. There are so many vectors for people to connect to the corporate network these days it is not funny. David.
