[THIN] Re: OT: Changing NT password through an SSL website

• From: "Evan Mann" <emann@xxxxxxxxxxxxxxxxxxxxx>
• To: <thin@xxxxxxxxxxxxx>
• Date: Thu, 11 Mar 2004 15:19:18 -0500

OWA's method simply lets you change the password.  I believe anything
Citrix has works the same way.

Changing the password is the easy part. it's having a web app that
checks against a GPO for password expiration interval or against the
force change of password at next logon option in AD.  And not just
having an app that does it, but having it setup in a way that this is
the first thing done when you try to Auth to a website requiring NT
Auth.



-----Original Message-----
From: thin-bounce@xxxxxxxxxxxxx [mailto:thin-bounce@xxxxxxxxxxxxx] On
Behalf Of Spencer Sun
Sent: Thursday, March 11, 2004 12:10 PM
To: thin@xxxxxxxxxxxxx
Subject: [THIN] Re: OT: Changing NT password through an SSL website

I would look at the OWA and Citrix WebI does this.  I'm sure you can
borrow a page or script from either of these technologies to do what you
want.

At a previous employer we had do it internally by pointing at
http:\\%servername%\iisadmpwd\aexp4b.htr where servername was domain
controller.  I don't think that's what you want to do from outside, but
it might give you ideas.


----- Original Message -----
From: "Evan Mann" <emann@xxxxxxxxxxxxxxxxxxxxx>
To: <thin@xxxxxxxxxxxxx>
Sent: Thursday, March 11, 2004 8:22 AM
Subject: [THIN] Re: OT: Changing NT password through an SSL website


I've thought of that, but that causes too much headache and extra work
for the help desk when users don't change their password in time because
they forgot to didn't read the e-mail, etc.  This isn't something we can
rely on the user doing willingly, it just never works out smoothly.

And on top of that, I'd still need some method for them to change the
password through a website.

=3D20

-----Original Message-----
From: thin-bounce@xxxxxxxxxxxxx [mailto:thin-bounce@xxxxxxxxxxxxx] On
Behalf Of Paul Bergson (MP)
Sent: Thursday, March 11, 2004 9:09 AM
To: thin@xxxxxxxxxxxxx
Subject: [THIN] Re: OT: Changing NT password through an SSL website

How about a different approach?  Have a weekly task that looks at
expiring passwords.  It e-mails users that have fallen below a certain
threshold.  We used to have a task as such but is no longer used.  I
can't find it or I would offer it to you.  It shouldn't take you more
than a few hours to code though.

Thanks
=3D20
Paul

-----Original Message-----
From: Evan Mann [mailto:emann@xxxxxxxxxxxxxxxxxxxxx]
Sent: Wednesday, March 10, 2004 6:05 PM
To: thin@xxxxxxxxxxxxx
Subject: [THIN] OT: Changing NT password through an SSL website

Hoping someone has seen someone do this or know of a way to do this.

A large number of my users are not connected to the domain.  This makes
it difficult to enable GPO's for expiring passwords every 90 days
because their ONLY interaction with something that can talk to the
domain is via website that require auth (NT Auth).

What I ideally want is to be able to set the password age in the GPO and
every time they auth to the website, it will check to see if that
parameter has been met, and if so, prompt them to change their password,
and then let them into the website.

If this cannot be done, my next step would be to manually set the "user
must change password and net logon" field and have something that checks
against this field every time they try to auth to a website.

This would be done via SSL so there are no plain text passwords.  It
would obviously have to be some kind of applications/ISAPI/ASP/whatever
that runs as the actual auth, instead of relying on the IIS auth.  I'm
just not sure if something exists,or can be coded to do this.

********************************************************
This weeks sponsor Emergent Online.
Emergent OnLine is the leading server-based computing consulting
integration firm in the nation. Emergent OnLine delivers expert
consulting services you can depend on.
http://www.go-eol.com
**********************************************************
Useful Thin Client Computing Links are available at:
http://thin.net/links.cfm
***********************************************************
For Archives, to Unsubscribe, Subscribe or set Digest or Vacation mode
use the below link:
http://thin.net/citrixlist.cfm
********************************************************
This weeks sponsor Emergent Online.
Emergent OnLine is the leading server-based computing consulting
integration firm in the nation. Emergent OnLine delivers expert
consulting services you can depend on.
http://www.go-eol.com
**********************************************************
Useful Thin Client Computing Links are available at:
http://thin.net/links.cfm
***********************************************************
For Archives, to Unsubscribe, Subscribe or set Digest or Vacation mode
use the below link:
http://thin.net/citrixlist.cfm


********************************************************
This weeks sponsor Emergent Online.
Emergent OnLine is the leading server-based computing consulting
integration
firm in the nation. Emergent OnLine delivers expert
consulting services you can depend on.
http://www.go-eol.com
**********************************************************
Useful Thin Client Computing Links are available at:
http://thin.net/links.cfm
***********************************************************
For Archives, to Unsubscribe, Subscribe or
set Digest or Vacation mode use the below link:
http://thin.net/citrixlist.cfm

********************************************************
This weeks sponsor Emergent Online.
Emergent OnLine is the leading server-based computing consulting
integration firm in the nation. Emergent OnLine delivers expert=20
consulting services you can depend on.
http://www.go-eol.com
**********************************************************
Useful Thin Client Computing Links are available at:
http://thin.net/links.cfm
***********************************************************
For Archives, to Unsubscribe, Subscribe or=20
set Digest or Vacation mode use the below link:
http://thin.net/citrixlist.cfm


********************************************************
This weeks sponsor Emergent Online.
Emergent OnLine is the leading server-based computing consulting integration 
firm in the nation. Emergent OnLine delivers expert 
consulting services you can depend on.
http://www.go-eol.com
**********************************************************
Useful Thin Client Computing Links are available at:
http://thin.net/links.cfm
***********************************************************
For Archives, to Unsubscribe, Subscribe or 
set Digest or Vacation mode use the below link:
http://thin.net/citrixlist.cfm

Other related posts:

• » [THIN] OT: Changing NT password through an SSL website
• » [THIN] Re: OT: Changing NT password through an SSL website
• » [THIN] Re: OT: Changing NT password through an SSL website
• » [THIN] Re: OT: Changing NT password through an SSL website
• » [THIN] Re: OT: Changing NT password through an SSL website
• » [THIN] Re: OT: Changing NT password through an SSL website
• » [THIN] Re: OT: Changing NT password through an SSL website
• » [THIN] Re: OT: Changing NT password through an SSL website
• » [THIN] Re: OT: Changing NT password through an SSL website

1. Home
2. thin
3. Archive
4. 03-2004

---

• » Previous by Date
• » Next by Date
• » Related Posts
• » View list details
• » Manage your subscription

---