My apologies. I think the context of my use of 'frivolous' may have been misunderstood. I was referring to the specific case of "would be used on a LAN for non-savvy users" as opposed to all possible uses for web integration to AD. Or...maybe it was understood perfectly well.
Nonetheless, I probably should have chosen my words better on the list -- knowing that email communication is oft misunderstood. Essentially, I felt that the reasons stated would not warrant a very good business case for implementing the service. Granted, that wasn't the question but, it did say 'any advice is appreciated'. My advice would be to go back and do a risk analysis on this service to determine if it's really worth it. I would say the same thing about OWA...even though it's widely adopted. -- James Harless On 4/12/06 4:02 PM, "Thor (Hammer of God)" <[EMAIL PROTECTED]> wrote: > I was going to post something similar-- both about OWA having that feature > for individual users to change the password as the "frivolous" bit. > > It's still unclear to me whether the OP was talking about "self-service" > password changes for themselves or giving the "sales force" the ability to > change the passwords for other accounts (such as customer accounts or > something). The security ramifications are different for the two... > > t > > > On 4/12/06 11:43 AM, "[EMAIL PROTECTED]" <[EMAIL PROTECTED]> spoketh > to all: > >> We aren't talking about anything new here. The Exchange OWA connects to >> AD and has a password change feaure. Although I'm not quite sure where >> the orginal poster mentioned the existance of an AD infrastructure to >> begin with. Seems like that was just an assumption. >> >> If anyone objects to the basis of the question, I'd be interested in >> hearing different solutions to meet the need, but you can't just call >> it's frivolous. I wish everytime my employer had a need to be met, I >> could just say "Sorry, won't do it. Sounds frivilous.", and they would >> just go away. I may get away with saying I wouldn't suugest doing it >> that way, but the next question would, "how could we acheive it?" A lack >> of a solution does not abolish a need. >> >> Also, it's safe to assume, I believe, that anyone posting to newsgroup >> focused on Microsoft security is looking for a secure method to >> implement. >> >> >> >> >>> -----Original Message----- >>> From: James Harless [mailto:[EMAIL PROTECTED] >>> Sent: Wednesday, April 12, 2006 10:19 AM >>> To: [email protected] >>> Subject: Re: Adding Users via Web Interface >>> >>> Seems like an exceptionally bad idea to me. Connecting a >>> webserver to AD so frivolously seems like an invitation to evil-doing. >>> >>> >>> -- >>> James Harless >>> >>> >>> >>> >>> On 4/11/06 7:24 PM, "Crawley, Jim" <[EMAIL PROTECTED]> wrote: >>> >>>> I'm actually quite interested in seeing how this progresses as >>>> well. Right now we have a mixed network and it would be >>> great to have a >>>> way for the end-user to change their own passwords both on >>> the max and >>>> on machines still connected to the netware network. >>>> >>>> >>>> >>>> >>>> >>>> >>>> -----Original Message----- >>>> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] >>>> Sent: Wednesday, 12 April 2006 6:51 AM >>>> To: [EMAIL PROTECTED]; [email protected] >>>> Subject: RE: Adding Users via Web Interface >>>> >>>> Adam, >>>> >>>> What's so hard about pressing <ctrl>+<alt>+<del> and >>> clicking the button >>>> that says "Change Password"? It seems like opening up a >>> web browser and >>>> doing it at a web server is not only less secure but also >>> quite a few >>>> more steps! >>>> >>>> Steve Bostedor >>>> http://www.bozteck.com >>>> Bozteck President >>>> >>>> -----Original Message----- >>>> From: Adam Kane [mailto:[EMAIL PROTECTED] >>>> Sent: Tuesday, April 11, 2006 3:33 PM >>>> To: [email protected] >>>> Subject: Adding Users via Web Interface >>>> >>>> Hi all, >>>> >>>> Is there some kind of application I can install on my Windows 2000 >>>> Server IIS machine to allow changing of user passwords via web >>>> interface? This would be used on a LAN for non-savvy users >>> (ie. sales >>>> associates) to change passwords quickly to users on the win2k server >>>> machine. >>>> >>>> Any advice is appreciated. Thanks! >>>> >>>> >>>> Regards, >>>> >>>> Adam Kane >>>> >>>> >>>> >>> -------------------------------------------------------------- >>> ---------- >>>> --- >>>> >>> -------------------------------------------------------------- >>> ---------- >>>> --- >>>> >>>> >>>> >>>> >>> -------------------------------------------------------------- >>> ---------- >>>> --- >>>> >>> -------------------------------------------------------------- >>> ---------- >>>> --- >>>> >>>> >>>> >>> -------------------------------------------------------------- >>> ------------- >>>> >>> -------------------------------------------------------------- >>> ------------- >>>> >>> >>> >>> -------------------------------------------------------------- >>> ------------- >>> -------------------------------------------------------------- >>> ------------- >>> >>> >> >> --------------------------------------------------------------------------- >> --------------------------------------------------------------------------- >> >> >> > > > > --------------------------------------------------------------------------- > --------------------------------------------------------------------------- > --------------------------------------------------------------------------- ---------------------------------------------------------------------------
