OWA's method simply lets you change the password. I believe anything Citrix has works the same way. Changing the password is the easy part. it's having a web app that checks against a GPO for password expiration interval or against the force change of password at next logon option in AD. And not just having an app that does it, but having it setup in a way that this is the first thing done when you try to Auth to a website requiring NT Auth. -----Original Message----- From: thin-bounce@xxxxxxxxxxxxx [mailto:thin-bounce@xxxxxxxxxxxxx] On Behalf Of Spencer Sun Sent: Thursday, March 11, 2004 12:10 PM To: thin@xxxxxxxxxxxxx Subject: [THIN] Re: OT: Changing NT password through an SSL website I would look at the OWA and Citrix WebI does this. I'm sure you can borrow a page or script from either of these technologies to do what you want. At a previous employer we had do it internally by pointing at http:\\%servername%\iisadmpwd\aexp4b.htr where servername was domain controller. I don't think that's what you want to do from outside, but it might give you ideas. ----- Original Message ----- From: "Evan Mann" <emann@xxxxxxxxxxxxxxxxxxxxx> To: <thin@xxxxxxxxxxxxx> Sent: Thursday, March 11, 2004 8:22 AM Subject: [THIN] Re: OT: Changing NT password through an SSL website I've thought of that, but that causes too much headache and extra work for the help desk when users don't change their password in time because they forgot to didn't read the e-mail, etc. This isn't something we can rely on the user doing willingly, it just never works out smoothly. And on top of that, I'd still need some method for them to change the password through a website. =3D20 -----Original Message----- From: thin-bounce@xxxxxxxxxxxxx [mailto:thin-bounce@xxxxxxxxxxxxx] On Behalf Of Paul Bergson (MP) Sent: Thursday, March 11, 2004 9:09 AM To: thin@xxxxxxxxxxxxx Subject: [THIN] Re: OT: Changing NT password through an SSL website How about a different approach? Have a weekly task that looks at expiring passwords. It e-mails users that have fallen below a certain threshold. We used to have a task as such but is no longer used. I can't find it or I would offer it to you. It shouldn't take you more than a few hours to code though. Thanks =3D20 Paul -----Original Message----- From: Evan Mann [mailto:emann@xxxxxxxxxxxxxxxxxxxxx] Sent: Wednesday, March 10, 2004 6:05 PM To: thin@xxxxxxxxxxxxx Subject: [THIN] OT: Changing NT password through an SSL website Hoping someone has seen someone do this or know of a way to do this. A large number of my users are not connected to the domain. This makes it difficult to enable GPO's for expiring passwords every 90 days because their ONLY interaction with something that can talk to the domain is via website that require auth (NT Auth). What I ideally want is to be able to set the password age in the GPO and every time they auth to the website, it will check to see if that parameter has been met, and if so, prompt them to change their password, and then let them into the website. If this cannot be done, my next step would be to manually set the "user must change password and net logon" field and have something that checks against this field every time they try to auth to a website. This would be done via SSL so there are no plain text passwords. It would obviously have to be some kind of applications/ISAPI/ASP/whatever that runs as the actual auth, instead of relying on the IIS auth. I'm just not sure if something exists,or can be coded to do this. ******************************************************** This weeks sponsor Emergent Online. Emergent OnLine is the leading server-based computing consulting integration firm in the nation. Emergent OnLine delivers expert consulting services you can depend on. http://www.go-eol.com ********************************************************** Useful Thin Client Computing Links are available at: http://thin.net/links.cfm *********************************************************** For Archives, to Unsubscribe, Subscribe or set Digest or Vacation mode use the below link: http://thin.net/citrixlist.cfm ******************************************************** This weeks sponsor Emergent Online. Emergent OnLine is the leading server-based computing consulting integration firm in the nation. Emergent OnLine delivers expert consulting services you can depend on. http://www.go-eol.com ********************************************************** Useful Thin Client Computing Links are available at: http://thin.net/links.cfm *********************************************************** For Archives, to Unsubscribe, Subscribe or set Digest or Vacation mode use the below link: http://thin.net/citrixlist.cfm ******************************************************** This weeks sponsor Emergent Online. Emergent OnLine is the leading server-based computing consulting integration firm in the nation. Emergent OnLine delivers expert consulting services you can depend on. http://www.go-eol.com ********************************************************** Useful Thin Client Computing Links are available at: http://thin.net/links.cfm *********************************************************** For Archives, to Unsubscribe, Subscribe or set Digest or Vacation mode use the below link: http://thin.net/citrixlist.cfm ******************************************************** This weeks sponsor Emergent Online. Emergent OnLine is the leading server-based computing consulting integration firm in the nation. Emergent OnLine delivers expert=20 consulting services you can depend on. http://www.go-eol.com ********************************************************** Useful Thin Client Computing Links are available at: http://thin.net/links.cfm *********************************************************** For Archives, to Unsubscribe, Subscribe or=20 set Digest or Vacation mode use the below link: http://thin.net/citrixlist.cfm ******************************************************** This weeks sponsor Emergent Online. Emergent OnLine is the leading server-based computing consulting integration firm in the nation. Emergent OnLine delivers expert consulting services you can depend on. http://www.go-eol.com ********************************************************** Useful Thin Client Computing Links are available at: http://thin.net/links.cfm *********************************************************** For Archives, to Unsubscribe, Subscribe or set Digest or Vacation mode use the below link: http://thin.net/citrixlist.cfm