Re: Changing Domain Passwords

[Kevin Halgren <kevin.halgren () WASHBURN EDU>]

While not exactly like your situation, we are looking at a similar issue 
and intend to address it in the following way:

Disable password change from domain PCs (no more ctl-alt-del -> Change 
Password)

Direct users to a web page to perform password resets.  This web page 
runs a script that reaches out to each of our directory/authentication 
systems and performs an LDAP command to change the password.  Active 
Directory supports LDAP password changes if and only if you process it 
over an SSL-secured LDAP connection (port 636).  You can find more info 
by doing a Google search for "Active Directory LDAP change password"

Kevin

--
Kevin Halgren
Assistant Director - Systems and Network Services
Washburn University
(785) 670-2341
kevin.halgren () washburn edu



On 6/21/2010 10:46 AM, STEVE MAGRIBY wrote:
> Our students have always changed their domain (Active Directory) 
> password through Outlook Web Access (Exchange 2003).
>
> However, we recently outsourced our student email to MS Live@edu. Now 
> we are wondering how students will be able to change his/her password 
> without coming on campus and logging into a domain workstation.
>
> If we use Live@edu's SSO (single sign-on) students will still need to 
> be on the domain to change their domain password.
>
> If any other schools have outsourced student email we would be 
> grateful to hear of solutions for changing passwords in the domain 
> (Active Directory) either without being on campus.
>
> Thanks for any information you can provide.