Focus on Microsoft
Forcing Password Changes for Non-Interacitve Logons Jul 16 2009 04:23AM
GrowlieGirl gmail com (2 replies)
Re: Forcing Password Changes for Non-Interacitve Logons Jul 20 2009 11:06PM
Kurt Buff (kurt buff gmail com)
On Wed, Jul 15, 2009 at 21:23, <GrowlieGirl (at) gmail (dot) com [email concealed]> wrote:
> I have googled and googled but cannot find the answer to this one, hoping you can help.
> We have ADS password policy enforced whereby the user has to change their password
> every 60 days. If they have not changed their password after this time their account is locked.
> Unfortunately the users with non-interactive accounts do not get the notification to change
> their password nor can they get to the change password facility that the interactive logon
> users can use. Is there any way to notify the users and have them carry out a password
> change?

Not directly as far as I'm aware, but there are a ton of free tools in
the world that will allow you to filter your user base according to
the age of their password - check, for instance, joeware.net, and
google for netpwage.exe, among many others.

Wrap that up in a script with one of my favorite tools - blat.exe - to
send each person an email for several days before it expires, and
Bob's yer uncle.

There are probably commercial tools as well, but I don't know that
space well at all.

Kurt

[ reply ]
Re: Forcing Password Changes for Non-Interacitve Logons Jul 20 2009 10:55PM
Mark Holmes (mark holmes nuffield ox ac uk) (1 replies)
Re: Forcing Password Changes for Non-Interacitve Logons Jul 21 2009 03:48AM
Kosala Atapattu (kosala atapattu gmail com) (1 replies)
RE: Forcing Password Changes for Non-Interacitve Logons Jul 21 2009 10:44AM
Mark Holmes (mark holmes nuffield ox ac uk)


 

Privacy Statement
Copyright 2010, SecurityFocus