RE: iisadmpwd/UPNDec 17 2004 07:04PM Jordan Wiseman (Jordan_Wiseman Valleymed org)
Oops...you are correct.
The code in the achg.asp page (the actual workhorse of the iisadmpw app) uses the WinNT ADSI provider to manager the user account specified. I didn't originally test a user whose UPN and Pre-Win2K names were different.
To accomplish what you require...this code would have to be updated to search AD for the specified UPN if the username was not specified. Not too hard to code...but not ready-out-of-the-box either.
Jordan
-----Original Message-----
From: Bruno Jänes [mailto:bruno (at) microlink (dot) ee [email concealed]]
Sent: Friday, December 17, 2004 6:00 AM
To: Jordan Wiseman; focus-ms (at) lists.securityfocus (dot) com [email concealed]
Subject: RE: iisadmpwd/UPN
Not really,
It works only if pre-windows200 account name and name before @ symbol in UPN name are equal .....
Bruno
-----Original Message-----
From: Jordan Wiseman [mailto:Jordan_Wiseman (at) Valleymed (dot) org [email concealed]]
Sent: Tuesday, December 14, 2004 11:03 PM
To: Bruno Jänes; focus-ms (at) lists.securityfocus (dot) com [email concealed]
Subject: RE: iisadmpwd/UPN
Actually...it does. Make sure you DON'T specify the domain (IOW, leave the Domain field blank) if using the UPN in the username field.
I have tested this using both a W2K3/IIS6 setup and a W2K-SP4/IIS5 setup.
Jordan
-----Original Message-----
From: Bruno Jänes [mailto:bruno (at) microlink (dot) ee [email concealed]]
Sent: Monday, December 13, 2004 2:27 AM
To: focus-ms (at) lists.securityfocus (dot) com [email concealed]
Subject: iisadmpwd/UPN
Good day!
Anyone knows how to change passwords using User Principal Names (UPN)?
iisadmpwd dont support UPN :-(
DISCLAIMER:
This message is confidential, intended only for the named recipient(s)
and may contain information that is privileged or exempt from disclosure
under applicable law. If you are not the intended recipient(s), you are
notified that the dissemination, distribution or copying of this
information is strictly prohibited. If you received this message in
error, please notify the sender then delete this message.
DISCLAIMER:
This message is confidential, intended only for the named recipient(s)
and may contain information that is privileged or exempt from disclosure
under applicable law. If you are not the intended recipient(s), you are
notified that the dissemination, distribution or copying of this
information is strictly prohibited. If you received this message in
error, please notify the sender then delete this message.
The code in the achg.asp page (the actual workhorse of the iisadmpw app) uses the WinNT ADSI provider to manager the user account specified. I didn't originally test a user whose UPN and Pre-Win2K names were different.
To accomplish what you require...this code would have to be updated to search AD for the specified UPN if the username was not specified. Not too hard to code...but not ready-out-of-the-box either.
Jordan
-----Original Message-----
From: Bruno Jänes [mailto:bruno (at) microlink (dot) ee [email concealed]]
Sent: Friday, December 17, 2004 6:00 AM
To: Jordan Wiseman; focus-ms (at) lists.securityfocus (dot) com [email concealed]
Subject: RE: iisadmpwd/UPN
Not really,
It works only if pre-windows200 account name and name before @ symbol in UPN name are equal .....
Bruno
-----Original Message-----
From: Jordan Wiseman [mailto:Jordan_Wiseman (at) Valleymed (dot) org [email concealed]]
Sent: Tuesday, December 14, 2004 11:03 PM
To: Bruno Jänes; focus-ms (at) lists.securityfocus (dot) com [email concealed]
Subject: RE: iisadmpwd/UPN
Actually...it does. Make sure you DON'T specify the domain (IOW, leave the Domain field blank) if using the UPN in the username field.
I have tested this using both a W2K3/IIS6 setup and a W2K-SP4/IIS5 setup.
Jordan
-----Original Message-----
From: Bruno Jänes [mailto:bruno (at) microlink (dot) ee [email concealed]]
Sent: Monday, December 13, 2004 2:27 AM
To: focus-ms (at) lists.securityfocus (dot) com [email concealed]
Subject: iisadmpwd/UPN
Good day!
Anyone knows how to change passwords using User Principal Names (UPN)?
iisadmpwd dont support UPN :-(
With best wishes,
Bruno
------------------------------------------------------------------------
---
------------------------------------------------------------------------
---
DISCLAIMER:
This message is confidential, intended only for the named recipient(s)
and may contain information that is privileged or exempt from disclosure
under applicable law. If you are not the intended recipient(s), you are
notified that the dissemination, distribution or copying of this
information is strictly prohibited. If you received this message in
error, please notify the sender then delete this message.
------------------------------------------------------------------------
---
------------------------------------------------------------------------
---
DISCLAIMER:
This message is confidential, intended only for the named recipient(s)
and may contain information that is privileged or exempt from disclosure
under applicable law. If you are not the intended recipient(s), you are
notified that the dissemination, distribution or copying of this
information is strictly prohibited. If you received this message in
error, please notify the sender then delete this message.
------------------------------------------------------------------------
---
------------------------------------------------------------------------
---
[ reply ]