It would be possible, but you would need to ask them something that only they know, other than their password. For example, "What is your mother's maiden name?"
Of course, you would need to store that information somewhere, either in AD or a database. Be careful if you store it in AD, because AD can be queried by anyone with a domain account. Or, you can have them provide a secondary email address where all password reset requests would be sent. This is probably the safest method. I have thought about implementing this, but we don't get that many support calls for lost passwords, as far as I know. The next upgrade to our intranet will probably have this feature, however. -----Original Message----- From: Ian Vaughan [mailto:[EMAIL PROTECTED] Sent: Monday, February 05, 2007 9:46 AM To: CF-Talk Subject: RE: Resetting Active Directory Password using CFLDAP ? But this would be for users who have forgotten their current password and wish to reset it online (on another pc) without phoning the helpdesk to reset it. So is this scenario possible ? ------------ login page snippet ---------- <cfform method="POST" action="processing.cfm" name="Form"> Windows Logon : <cfinput type="text" name="sAMAccountName" size=22 ><br> First Name : <cfinput type="text" name="givenName" size=22 ><br> Surname : <cfinput type="text" name="sn" size=22 ><br> E-Mail : <cfinput type="text" name="mail" size=22 ><br> <input type="image" src="search.gif" border="0" style="cursor:hand" width="49" height="18"> </cfform> ------ authenticate and processing.cfm page snippet ----------- <cfset StartOU="dc=domain, dc=co,dc=uk"> <cfset filter = "(&(objectClass=user)"> <cfif len(trim(Form.givenName))> <cfset filter = filter & "(givenName=*#Form.givenName#*)"> </cfif> <cfif len(trim(Form.mail))> <cfset filter = filter & "(mail=*#Form.mail#*)"> </cfif> <cfif len(trim(Form.sn))> <cfset filter = filter & "(sn=*#Form.sn#*)"> </cfif> <cfif len(trim(Form.sAMAccountName))> <cfset filter = filter & "(sAMAccountName=*#Form.sAMAccountName#*)"> </cfif> <cfset filter = filter & ")"> <cfldap action="query" name="adresult" attributes = "sAMAccountName,dn, cn,sn,givenName,password, mail,ou" start="#StartOU#" scope="subtree" filter="#filter#" server="servername" port="port" username="username" password="password" > <cfset session.user = #sAMAccountName#> <cfoutput query="adresult"> Hello #cn# <br> <cfform method="POST" action="changepassword.cfm" name="search"> <p>Enter New Password<cfinput type="text" name="password"></p> <p>Confirm New Password<cfinput type="text" name="password1"></p> <input type="image" src="submit.gif" border="0" style="cursor:hand" align="right" width="49" height="18"> </cfform> </cfoutput> ---------------changepassword.cfm page snippet------ <cfset args = "user #session.sAMAccountName()# #form.password1# /domain"> <cfsavecontent variable="results"> <cfexecute name="c:\windows\system32\net.exe" arguments="#args#" timeout="10" /> </cfsavecontent> <p>Your password has been changed </p> ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Upgrade to Adobe ColdFusion MX7 Experience Flex 2 & MX7 integration & create powerful cross-platform RIAs http:http://ad.doubleclick.net/clk;56760587;14748456;a?http://www.adobe.com/products/coldfusion/flex2/?sdid=LVNU Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:268683 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
