Do you know if the linked value msDS-AuthenticatedAtDC (on the user) timeout after a period of time (e.g. TTL)
What I mean by this say a user called Fred authenticates via RODC01 (for example he logs onto a PC at the site hosting RODC01) the attribute on his user object (which is the forward link) will show he authenticated at RODC01.
How lets say he goes back to his main office and does not return to the site containing RODC01 and two years have passed. If I look at Fred user account will RODC01 still show up under msDS-AuthenticatedAtDC ?
I know when he Fred changes his password at a read-write DC, his password cashed on RODC01 wull be removed. However what about msDS-AuthenticatedAtDC is that updated at any point so his RODC01 no longer show up?
Thanks, please email me
cxmelga
What I mean by this say a user called Fred authenticates via RODC01 (for example he logs onto a PC at the site hosting RODC01) the attribute on his user object (which is the forward link) will show he authenticated at RODC01.
How lets say he goes back to his main office and does not return to the site containing RODC01 and two years have passed. If I look at Fred user account will RODC01 still show up under msDS-AuthenticatedAtDC ?
I know when he Fred changes his password at a read-write DC, his password cashed on RODC01 wull be removed. However what about msDS-AuthenticatedAtDC is that updated at any point so his RODC01 no longer show up?
Thanks, please email me
cxmelga