Re: changing NT passwords across the Internet using SSL

From: Karl Levinson [x y] mvp (levinson_k@despammed.com)
Date: 03/01/03 

From: "Karl Levinson [x y] mvp" <levinson_k@despammed.com>
Date: Sat, 1 Mar 2003 09:00:47 -0500

These are good things to do to secure the connection while they are changing
the password, but you still need a script, probably an ADSI script, to
actually change the password. www.iisfaq.com almost certainly has sample
code. OR, search www.google.com or www.microsoft.com/support for "ADSI
script change password" to find sample code to do this. You'd probably also
need to use ADSI to try to detect if the password was locked out and to
force them to a password change screen. It's difficult to force a remote
user to change his or her password reliably.

Password expiration and change issues are tricky for remote users. IIS does
not always check or deny access for users that have the "password expired"
attribute set, and does not automatically redirect these users to a change
password screen.

www.iisfaq.com answers most of these types of questions.

"Aasim" <aasim@bookacourse.com> wrote in message
news:051901c2df22$4c1d35a0$a601280a@phx.gbl...
> Hi,
>
> I have created 2,000 exchange mailbox accounts on my
> Windows 2000/Exchange 2000 server.
>
> These accounts have 'user must change password at next
> logon' enabled.
>
> These people will access their mail by using Outlook Web
> Access.
>
> I want them to be able to change their passwords, the
> first time they access their mailboxes. So this means
> changing passwords using a browser.
>
> How would I achieve this. I have thought about Certificate
> Server and then using SSL (https protocol) , will this
> work? or how else do I achieve this?
>
> Any Help appreciated.
>
> Thx
> 

---
Outgoing mail is certified Virus Free.
Checked by AVG anti-virus system (http://www.grisoft.com).
Version: 6.0.449 / Virus Database: 251 - Release Date: 1/27/2003

Relevant Pages

  • Re: How to tell if an AD user property is set
    ... I'm using ADSI only. ... My script needs to ... You can use the IsEmpty function to check if there is no value. ... The snippet I posted earlier seems most direct, but an ADO query could also ...
    (microsoft.public.windows.server.scripting)
  • Re: Local Account
    ... It covers VBScript, WSH, ADSI, ADO, and WMI. ... The text uses the LDAP provider, but the principles are the same. ... Script Center" to learn the script, ... Now, the local account is configed, but the property of the local ...
    (microsoft.public.scripting.vbscript)
  • Re: ADSI and NDS help
    ... trying to locate a user object in eDirectory via LDAP using ADSI. ... query i the script below runs successfully in ldp.exe; ...
    (microsoft.public.scripting.vbscript)
  • Re: LastLogonTimeStamp
    ... intLastLogonTime = intLastLogonTime / 1440 ... Microsoft MVP Scripting and ADSI ... I am able to run the script for accounts that have a LastLogonTimeStamp ... way to get around this?It is not that ADSI is unable to interpret the ...
    (microsoft.public.windows.server.scripting)
  • Re: Post from 2003-11-07 20:18 contains virus in attached file.
    ... There was no payload in the script. ... Ham just wants to perform a clean registery ... |> | Outgoing mail is certified Virus Free. ...
    (microsoft.public.security.virus)