June 7

Recent Microsoft operating systems have changed the way “cached” or “saved” credentials are stored. A cached credential is generated whenever the user selects “remember my password”. Normally, this feature works great, however, sometimes when a network/resource password is changed, Windows will still send the older locally cached/saved credential instead.

Under ideal conditions, Windows will see that the credential is no longer valid and prompt the user for new credentials. On the other hand, under certain conditions (not sure what these are), Windows refuses to acknowledge the “this password is incorrect” server response and it attempts to authenticate repeatedly with the outdated/old credential. Depending on your network’s security settings, this behavior could cause your account to become disabled or locked-out. To remedy this, a user must manually remove or update their cached credentials, the best course of action is to remove the cached credential. Instructions on how to remove cached credentials are below, courtesy of www.petenetlive.com

http://www.petenetlive.com/KB/Article/0000556.htm

Archive Copy: Removed Saved&Cached Credentials

 

More information on cached credentials:

What is a cached credential?

http://windowsitpro.com/windows/domain-credential-caching