RE: active directory password policy

There is a way in OWA to enable the ability for users to change their
passwords.

http://www.petri.co.il/enable_password_changing_through_owa_in_exchange_
2003.htm

as far as when to remember it, I would suggest perhaps a reoccurring
appointment in their calendar with a reminder for every 90 days,
starting the day before their password expires perhaps?

Another option would be to run full outlook via a terminal server, or
something like that forcing them to login to something, but that might
be a little overkill.

Conlan Adams

-----Original Message-----
From: William Stegman [mailto:stegmanw@comcast.net] 
Sent: Friday, February 04, 2005 5:10 PM
To: focus-ms@securityfocus.com
Subject: active directory password policy 

Does anyone have any experience with remote users who do not login to 
the domain on a regular basis or at all, and have a password expiration 
policy in effect? We can't seem to come up with a good plan to handle 
these users. They only occassionally access domain resources such as 
webmail via the Internet or an internal website to do timesheets via 
vpn, and will not have the luxury of logging on to a machine connected 
to our LAN and getting the warning about soon to expire passwords. If 
our policy dictates passwords expire every 90 days, how can we avoid the

inevitable calls regarding password resets?

thx

/William Stegman - Network Administrator///

TransCore - Hummelstownd


---------------------------------------------------------------------------
---------------------------------------------------------------------------