I'm setting up a demo lab environment in which each demo lab user is assigned 4 accounts to use in the lab. Users access the lab via Remote Desktop to the "client" machine in the lab - exposed at demolab.mydomain.com.

• The Client machine is a Windows 2008 Server R2 Enterprise Edition server
• The Remote Desktop Services role is configured on this server
• Remote Connection settings are configured to allow users to connect with any version of the Remote Desktop Client
• All accounts are members of the local Administrators and Remote Desktop Users groups
• All accounts are configured to be forced to change the default password after first login

The user is instructed to remote into the lab with an account designated as their main account, and establish 3 more remote desktop sessions within the lab using their 3 other assigned demo lab accounts.

When establishing the initial remote desktop connection to the lab using their main account, the user sees the change password dialog as expected.

However, after logging in and trying to establish remote desktop connections to the server with their three other accounts, they are prompted that they need to change the password after logging in but can't continue with the login process - they don't see the expected change password experience.

After logging in with a primary accounts, it doesn't make a difference if I try establishing a Remote Desktop connection to the environment using the name of the server, e.g. Client, or demolab.mydomain.com.

I experimented with changing the settings for Remote Connections to require NLA but that didn't make a different.

Appreciate any tips.

Thanks