Implications when letting people reset passwords over the Internet
From: Magoo (nospammagoo_at_hotmail.com)
Date: 03/27/05
- Previous message: Nir B: "Using AD for Linux Authentication"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Sun, 27 Mar 2005 10:55:07 -0800
Imagine my organization has 15,000+ Windows 2003 AD accounts.
I have a single Domain, Single Forest.
I am planning to hire some folks to build an ASP.NET code that would let
people to confirm identity and from there get passwords reset.
I would made the URL available on the Internet, published via ISA 2004 (ISA
box is in the DMZ).
The account able to reset passwords in AD would have the necessary rights to
reset passwords only.
Question is this:
What are the security implications when implementing such system ? Please
advise.
- Previous message: Nir B: "Using AD for Linux Authentication"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
