For host-initiated changes, third-party software must be installed on the host system to trap password changes initiated by users logged onto the host computer, and on the SNA Server to receive changes from the host.
When a change is made on the host system, the host computer sends notification of changes to a third-party product’s security integration DLL, which is installed on the SNA Server computer. The DLL then forwards the host-initiated changes to the Host Account Synchronization Service. This service then locates the network address of the primary Windows NT Account Synchronization Service using the resource location of the master Host Account Cache.
After the Host Account Cache is located, the Host Account Synchronization Service sends password changes to the Host Account Cache service using encrypted RPC messages. Once the changes are received by the service, it propagates the appropriate changes in all security domains defined in the host security domain.